deploystackio
diff --git a/‎services/backend/api-spec.json‎
Lines changed: 7 additions & 7 deletions b/‎services/backend/api-spec.json‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎services/backend/api-spec.yaml‎
Lines changed: 7 additions & 9 deletions b/‎services/backend/api-spec.yaml‎
Lines changed: 7 additions & 9 deletions
diff --git a/‎services/backend/src/routes/users/me/devices/delete.ts‎
Lines changed: 74 additions & 0 deletions b/‎services/backend/src/routes/users/me/devices/delete.ts‎
Lines changed: 74 additions & 0 deletions
diff --git a/‎services/backend/src/routes/users/me/devices/get.ts‎
Lines changed: 74 additions & 0 deletions b/‎services/backend/src/routes/users/me/devices/get.ts‎
Lines changed: 74 additions & 0 deletions
@@ -19878,7 +19878,7 @@
         "tags": [
           "MCP User Configurations"
         ],
-        "description": "Creates a new user-specific configuration for an MCP server installation. This allows individual users to customize arguments and environment variables for their personal use. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users). Requires mcp:read scope for OAuth2 access.",
+        "description": "Creates a new user-specific configuration for an MCP server installation. This allows individual users to customize arguments and environment variables for their personal use. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users).",
         "requestBody": {
           "content": {
             "application/json": {
@@ -21169,7 +21169,7 @@
         "tags": [
           "MCP User Configurations"
         ],
-        "description": "Updates the user-specific arguments for an MCP server installation configuration. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users). Requires mcp:read scope for OAuth2 access.",
+        "description": "Updates the user-specific arguments for an MCP server installation configuration. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users).",
         "requestBody": {
           "content": {
             "application/json": {
@@ -21457,7 +21457,7 @@
         "tags": [
           "MCP User Configurations"
         ],
-        "description": "Updates the user-specific environment variables for an MCP server installation configuration. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users). Requires mcp:read scope for OAuth2 access.",
+        "description": "Updates the user-specific environment variables for an MCP server installation configuration. Requires Content-Type: application/json header when sending request body. Supports both cookie-based authentication (for web users) and OAuth2 Bearer token authentication (for CLI users).",
         "requestBody": {
           "content": {
             "application/json": {
@@ -23253,9 +23253,9 @@
               "type": "string"
             },
             "in": "query",
-            "name": "device_id",
+            "name": "hardware_id",
             "required": false,
-            "description": "Device ID to get device-specific user configurations"
+            "description": "Hardware ID to get device-specific user configurations"
           }
         ],
         "security": [
@@ -23350,7 +23350,7 @@
             }
           },
           "400": {
-            "description": "Bad Request - Invalid device_id or missing parameters",
+            "description": "Bad Request - Invalid hardware_id or missing parameters",
             "content": {
               "application/json": {
                 "schema": {
@@ -23370,7 +23370,7 @@
                     "error"
                   ],
                   "additionalProperties": false,
-                  "description": "Bad Request - Invalid device_id or missing parameters"
+                  "description": "Bad Request - Invalid hardware_id or missing parameters"
                 }
               }
             }
 
@@ -13702,8 +13702,7 @@ paths:
         environment variables for their personal use. Requires Content-Type:
         application/json header when sending request body. Supports both
         cookie-based authentication (for web users) and OAuth2 Bearer token
-        authentication (for CLI users). Requires mcp:read scope for OAuth2
-        access."
+        authentication (for CLI users)."
       requestBody:
         content:
           application/json:
@@ -14604,8 +14603,7 @@ paths:
       description: "Updates the user-specific arguments for an MCP server installation
         configuration. Requires Content-Type: application/json header when
         sending request body. Supports both cookie-based authentication (for web
-        users) and OAuth2 Bearer token authentication (for CLI users). Requires
-        mcp:read scope for OAuth2 access."
+        users) and OAuth2 Bearer token authentication (for CLI users)."
       requestBody:
         content:
           application/json:
@@ -14808,7 +14806,7 @@ paths:
         installation configuration. Requires Content-Type: application/json
         header when sending request body. Supports both cookie-based
         authentication (for web users) and OAuth2 Bearer token authentication
-        (for CLI users). Requires mcp:read scope for OAuth2 access."
+        (for CLI users)."
       requestBody:
         content:
           application/json:
@@ -16067,9 +16065,9 @@ paths:
         - schema:
             type: string
           in: query
-          name: device_id
+          name: hardware_id
           required: false
-          description: Device ID to get device-specific user configurations
+          description: Hardware ID to get device-specific user configurations
       security:
         - cookieAuth: []
         - bearerAuth: []
@@ -16134,7 +16132,7 @@ paths:
                 additionalProperties: false
                 description: MCP configurations retrieved successfully
         "400":
-          description: Bad Request - Invalid device_id or missing parameters
+          description: Bad Request - Invalid hardware_id or missing parameters
           content:
             application/json:
               schema:
@@ -16150,7 +16148,7 @@ paths:
                   - success
                   - error
                 additionalProperties: false
-                description: Bad Request - Invalid device_id or missing parameters
+                description: Bad Request - Invalid hardware_id or missing parameters
         "401":
           description: Unauthorized
           content:
 
@@ -0,0 +1,74 @@
+import { type FastifyInstance } from 'fastify';
+import { DeviceService } from '../../../../services/deviceService';
+import { requireAuthentication } from '../../../../middleware/roleMiddleware';
+import { 
+  SUCCESS_RESPONSE_SCHEMA,
+  ERROR_RESPONSE_SCHEMA,
+  DEVICE_PARAMS_SCHEMA,
+  type SuccessResponse,
+  type ErrorResponse,
+  type DeviceParams
+} from './schemas';
+
+export default async function deleteDeviceRoute(server: FastifyInstance) {
+  const deviceService = new DeviceService(server.db);
+
+  server.delete('/users/me/devices/:deviceId', {
+    preValidation: requireAuthentication(),
+    schema: {
+      tags: ['User Devices'],
+      summary: 'Remove device',
+      description: 'Removes a device from the user account. This will deactivate the device and prevent it from accessing MCP configurations.',
+      security: [{ cookieAuth: [] }],
+      params: DEVICE_PARAMS_SCHEMA,
+      response: {
+        200: {
+          ...SUCCESS_RESPONSE_SCHEMA,
+          description: 'Successfully removed device'
+        },
+        401: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Unauthorized'
+        },
+        404: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Device not found'
+        },
+        500: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Internal Server Error'
+        }
+      }
+    }
+  }, async (request, reply) => {
+    try {
+      const { deviceId } = request.params as DeviceParams;
+      const userId = request.user!.id;
+
+      await deviceService.removeDevice(deviceId, userId);
+
+      const response: SuccessResponse = {
+        success: true,
+        message: 'Device removed successfully'
+      };
+      const jsonString = JSON.stringify(response);
+      return reply.status(200).type('application/json').send(jsonString);
+    } catch (error) {
+      if (error instanceof Error && error.message === 'Device not found or access denied') {
+        const errorResponse: ErrorResponse = {
+          success: false,
+          error: 'Device not found'
+        };
+        const jsonString = JSON.stringify(errorResponse);
+        return reply.status(404).type('application/json').send(jsonString);
+      }
+
+      const errorResponse: ErrorResponse = {
+        success: false,
+        error: error instanceof Error ? error.message : 'Failed to remove device'
+      };
+      const jsonString = JSON.stringify(errorResponse);
+      return reply.status(500).type('application/json').send(jsonString);
+    }
+  });
+}
@@ -0,0 +1,74 @@
+import { type FastifyInstance } from 'fastify';
+import { DeviceService } from '../../../../services/deviceService';
+import { requireAuthentication } from '../../../../middleware/roleMiddleware';
+import { 
+  DEVICE_DETAIL_RESPONSE_SCHEMA, 
+  ERROR_RESPONSE_SCHEMA,
+  DEVICE_PARAMS_SCHEMA,
+  type DeviceDetailResponse,
+  type ErrorResponse,
+  type DeviceParams
+} from './schemas';
+
+export default async function getDeviceRoute(server: FastifyInstance) {
+  const deviceService = new DeviceService(server.db);
+
+  server.get('/users/me/devices/:deviceId', {
+    preValidation: requireAuthentication(),
+    schema: {
+      tags: ['User Devices'],
+      summary: 'Get device details',
+      description: 'Retrieves detailed information about a specific device owned by the authenticated user.',
+      security: [{ cookieAuth: [] }],
+      params: DEVICE_PARAMS_SCHEMA,
+      response: {
+        200: {
+          ...DEVICE_DETAIL_RESPONSE_SCHEMA,
+          description: 'Successfully retrieved device details'
+        },
+        401: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Unauthorized'
+        },
+        404: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Device not found'
+        },
+        500: {
+          ...ERROR_RESPONSE_SCHEMA,
+          description: 'Internal Server Error'
+        }
+      }
+    }
+  }, async (request, reply) => {
+    try {
+      const { deviceId } = request.params as DeviceParams;
+      const userId = request.user!.id;
+
+      const device = await deviceService.getDeviceById(deviceId);
+      
+      if (!device || device.user_id !== userId) {
+        const errorResponse: ErrorResponse = {
+          success: false,
+          error: 'Device not found'
+        };
+        const jsonString = JSON.stringify(errorResponse);
+        return reply.status(404).type('application/json').send(jsonString);
+      }
+
+      const response: DeviceDetailResponse = {
+        success: true,
+        device
+      };
+      const jsonString = JSON.stringify(response);
+      return reply.status(200).type('application/json').send(jsonString);
+    } catch (error) {
+      const errorResponse: ErrorResponse = {
+        success: false,
+        error: error instanceof Error ? error.message : 'Failed to retrieve device'
+      };
+      const jsonString = JSON.stringify(errorResponse);
+      return reply.status(500).type('application/json').send(jsonString);
+    }
+  });
+}