4fb2818a19
* Add /marketplace browse page + Model B opt-in stack composition
New /marketplace browse surface unifies the curated marketplaces
(admin-managed git mirrors) and the community Flea Market behind
three tabs — Curated / Flea / My Stack — with per-tab category
filter, search across both sources with scope checkboxes, and
numeric pagination, all driven by URL query state. Plugin detail
at /marketplace/curated/<slug>/<plugin> and /marketplace/flea/<id>;
nested skill / agent detail at /marketplace/curated/<slug>/<plugin>/
{skill,agent}/<name> and the flea-side single-page detail.
Model B opt-in: an RBAC grant on a curated plugin is now only
*eligibility*. The user must click "Add to my stack" for it to
enter their served Claude Code marketplace. Composition flips
from (rbac ∖ opt_outs) ∪ store_installs to
(rbac ∩ subscriptions) ∪ store_installs. The legacy
user_plugin_optouts table is renamed user_curated_subscriptions
(schema v27) — same table shape, inverted semantic, repository
methods become subscribe / unsubscribe / is_subscribed.
UX vocabulary: Install → Add to my stack, Installed → In your
stack, card "Installed" badge → "In stack" (amber pill), tab
"My Subscriptions" → "My Stack". Bridges the two-step model
(server-side bookmark vs. on-laptop install) the previous label
hid. Click triggers an inline post-add hint panel under the
description with the agnes refresh-marketplace recipe + Copy
chip, dismissible per-browser via localStorage.
Per-tab info blocks above the filter row:
- Curated: trust signal — "Each plugin here has a named curator
accountable for it." (blue accent + See-all-curators link)
- Flea: open-shelf signal — "Anyone in the company can upload
here." (purple accent + Tips-for-sharing link)
- My Stack: personal-shelf orientation — "Your AI stack —
everything you've added." (slate accent, no link)
Tabs carry per-tab Heroicons (shield-check / building-storefront
/ rectangle-stack) tinted to match each tab's accent; flips white
when the tab is active for contrast.
Hero illustration anchored to the right of the blue hero panel
(absolute, 47% wide, behind the search row content). Hidden
under 900px viewport.
Action-row CTAs realigned to publication intent: curated
"How to add new content" → "Submit a plugin" (links to the
guide page); flea button removed since +Upload sits next to it.
Empty-state CTAs match. /marketplace/guide/{curated,flea}
routes now host publication-flow guide pages with placeholder
ledes — full copy to be authored separately.
Categories: Heroicons-based icons mapped per category in
src/category_icons.py (zero new dependencies; SVG path strings
inlined). Marketplace cards, filter pills, and detail pages
read from the same source.
API endpoints under /api/marketplace:
- GET /items per-tab listing (curated / flea / my)
- GET /categories per-tab non-zero counts
- GET /curated/{slug}/{plugin} plugin detail
- POST/DELETE /curated/{slug}/{plugin}/install subscribe toggle
- GET /curated/{slug}/{plugin}/{skill,agent}/{name} inner item
The tab=my branch reads directly from
user_curated_subscriptions ∪ user_store_installs (not
resolve_user_marketplace, which bundles flea skills/agents into
a single store-bundle synthetic entry useful for serving the
Claude Code marketplace ZIP/git but wrong for browsing where
each item should appear as its own card).
Detail pages: plugin detail surfaces inner skills/agents as
clickable nested cards; commands/hooks/MCPs render as plain
name lists. Skill/agent detail mirrors the plugin layout with
kind-tinted accents (skill = green, agent = purple), Description
+ Details sidebar, Files + Docs sections, and the "How to call
it" copy-able invocation chip showing /<plugin>:<inner-name>
exactly as Claude Code namespaces it post-install. Curated
nested has no install button — links back to the parent plugin.
Navbar: standalone "My AI Stack" relabelled "My Stack" and
points at /marketplace?tab=my; "Store" link removed (Store
flow is reachable via the Flea Market tab's +Upload button).
The standalone /my-ai-stack and /store routes still work for
old bookmarks.
Tests cover the new browse / categories / install / RBAC paths
under tests/test_marketplace_api.py; existing marketplace and
store tests updated for Model B (explicit subscribe in fixtures).
Schema bumped v26 → v27 with idempotent migration that wipes
existing user_plugin_optouts rows on flip and adds
marketplace_plugins.created_at with registered_at backfill.
* Fix v28 migration + post-rebase test fallout
v28 ALTER TABLE marketplace_plugins ADD COLUMN created_at conflicted with
_SYSTEM_SCHEMA's earlier CREATE that already includes the column on fresh
installs (test fixtures starting at any pre-v28 version trip on it).
Switch to ADD COLUMN IF NOT EXISTS — same idiom as the upstream v27
Keboola sync-strategy migration on the same ladder.
Two test patches needed after the rebase bumped SCHEMA_VERSION 27 → 28:
- test_keboola_v27_migration.py: test_schema_version_constant_is_27 was
pinning ==27. Loosened to >=27 (the test's purpose is to verify the
v27 Keboola migration, not to pin the current SCHEMA_VERSION).
- test_setup_page_unified.py: was monkeypatching resolve_allowed_plugins
but compute_default_agent_prompt now reads from resolve_user_marketplace
(Model B-aware). Stub the right function so the test exercises the
v28 served-set path.
* Harden curated skill/agent inner endpoints against path traversal
`_read_inner`, the `skill_dir` walk in `curated_skill_detail`, and the
`agent_path.stat` in `curated_agent_detail` joined URL path-params onto
`plugin_root` without verifying the resolved candidate stayed inside it.
Starlette's `[^/]+` on `{skill_name}` / `{agent_name}` blocks the direct
URL exploit (encoded `/` 404s before the handler), but a curator-planted
symlink inside a curated marketplace's git mirror could still dereference
outside the plugin tree on read.
Adds `_safe_join(plugin_root, *parts)` doing
`Path.resolve(strict=True)` + `relative_to(plugin_root.resolve())`, used
by all three call sites so the boundary is enforced once and consistently.
Tests cover the helper directly (normal path resolves, escaping `..`
returns None, escaping symlink returns None, missing file returns None)
plus an end-to-end check that the symlink case actually 404s on the
HTTP endpoint. Symlink tests skip on Windows where symlink creation
needs elevated permissions; they run on Linux CI.
---------
Co-authored-by: Minas Arustamyan <arustamyan.minas@gmail.com>
471 lines
16 KiB
Python
471 lines
16 KiB
Python
"""Admin endpoints for marketplace git repositories.
|
|
|
|
CRUD + on-demand "Sync now" mirroring the /api/users shape. Tokens supplied
|
|
through the admin UI are persisted to data/state/.env_overlay (same pattern
|
|
as /api/admin/configure for Keboola/BigQuery) — never stored in the DB.
|
|
"""
|
|
|
|
import logging
|
|
import os
|
|
from datetime import datetime
|
|
from pathlib import Path
|
|
from typing import Any, List, Optional
|
|
|
|
import duckdb
|
|
from fastapi import APIRouter, Depends, HTTPException, Request
|
|
from pydantic import BaseModel
|
|
|
|
from app.auth.access import require_admin
|
|
from app.auth.dependencies import _get_db
|
|
from app.resource_types import ResourceType
|
|
from src.marketplace import (
|
|
MarketplaceNotFound,
|
|
delete_marketplace_dir,
|
|
is_valid_slug,
|
|
sync_marketplaces,
|
|
sync_one,
|
|
)
|
|
from src.repositories.audit import AuditRepository
|
|
from src.repositories.marketplace_plugins import MarketplacePluginsRepository
|
|
from src.repositories.marketplace_registry import MarketplaceRegistryRepository
|
|
|
|
logger = logging.getLogger(__name__)
|
|
router = APIRouter(prefix="/api/marketplaces", tags=["marketplaces"])
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Audit helper — same shape as app/api/users.py::_audit
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
def _audit(
|
|
conn: duckdb.DuckDBPyConnection,
|
|
actor_id: str,
|
|
action: str,
|
|
target_id: str,
|
|
params: Optional[dict] = None,
|
|
) -> None:
|
|
try:
|
|
safe_params = None
|
|
if params:
|
|
safe_params = {}
|
|
for k, v in params.items():
|
|
if isinstance(v, datetime):
|
|
safe_params[k] = v.isoformat()
|
|
else:
|
|
safe_params[k] = v
|
|
AuditRepository(conn).log(
|
|
user_id=actor_id,
|
|
action=action,
|
|
resource=f"marketplace:{target_id}",
|
|
params=safe_params,
|
|
)
|
|
except Exception:
|
|
pass
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Pydantic models
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
class CreateMarketplaceRequest(BaseModel):
|
|
name: str
|
|
slug: str
|
|
url: str
|
|
branch: Optional[str] = None
|
|
description: Optional[str] = None
|
|
token: Optional[str] = None
|
|
|
|
|
|
class UpdateMarketplaceRequest(BaseModel):
|
|
name: Optional[str] = None
|
|
url: Optional[str] = None
|
|
branch: Optional[str] = None
|
|
description: Optional[str] = None
|
|
# None = leave untouched; empty string = clear token; non-empty = rotate
|
|
token: Optional[str] = None
|
|
|
|
|
|
class MarketplaceResponse(BaseModel):
|
|
id: str
|
|
name: str
|
|
url: str
|
|
branch: Optional[str] = None
|
|
description: Optional[str] = None
|
|
registered_by: Optional[str] = None
|
|
registered_at: Optional[str] = None
|
|
last_synced_at: Optional[str] = None
|
|
last_commit_sha: Optional[str] = None
|
|
last_error: Optional[str] = None
|
|
has_token: bool = False
|
|
plugin_count: int = 0
|
|
|
|
|
|
def _to_response(row: dict, plugin_count: int = 0) -> MarketplaceResponse:
|
|
token_env = row.get("token_env") or ""
|
|
has_token = bool(token_env) and bool(os.environ.get(token_env, ""))
|
|
return MarketplaceResponse(
|
|
id=row["id"],
|
|
name=row["name"],
|
|
url=row["url"],
|
|
branch=row.get("branch"),
|
|
description=row.get("description"),
|
|
registered_by=row.get("registered_by"),
|
|
registered_at=str(row["registered_at"]) if row.get("registered_at") else None,
|
|
last_synced_at=str(row["last_synced_at"]) if row.get("last_synced_at") else None,
|
|
last_commit_sha=row.get("last_commit_sha"),
|
|
last_error=row.get("last_error"),
|
|
has_token=has_token,
|
|
plugin_count=plugin_count,
|
|
)
|
|
|
|
|
|
class PluginResponse(BaseModel):
|
|
name: str
|
|
description: Optional[str] = None
|
|
version: Optional[str] = None
|
|
author_name: Optional[str] = None
|
|
homepage: Optional[str] = None
|
|
category: Optional[str] = None
|
|
source_type: Optional[str] = None
|
|
source_spec: Optional[Any] = None
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Token persistence — mirrors app/api/admin.py::configure_instance
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
def _token_env_name(slug: str) -> str:
|
|
"""Derive a conventional env-var name from a slug.
|
|
|
|
"foundry-ai" -> "AGNES_MARKETPLACE_FOUNDRY_AI_TOKEN"
|
|
"""
|
|
normalized = slug.upper().replace("-", "_")
|
|
return f"AGNES_MARKETPLACE_{normalized}_TOKEN"
|
|
|
|
|
|
def _persist_token(env_name: str, value: str) -> None:
|
|
"""Write (or update) a single key in ``${STATE_DIR}/.env_overlay`` and ``os.environ``.
|
|
|
|
Path resolution matches ``app/main.py``'s startup-time read; without
|
|
this alignment, marketplace PATs persisted under the flat-mount
|
|
layout (``STATE_DIR=/data-state``) would land at
|
|
``/data/state/.env_overlay`` while the app reads from
|
|
``/data-state/.env_overlay``, silently dropping the token on the
|
|
next restart.
|
|
"""
|
|
from app.secrets import _state_dir
|
|
overlay_path = _state_dir() / ".env_overlay"
|
|
overlay_path.parent.mkdir(parents=True, exist_ok=True)
|
|
|
|
existing: dict[str, str] = {}
|
|
if overlay_path.exists():
|
|
for line in overlay_path.read_text().splitlines():
|
|
if "=" in line and not line.startswith("#"):
|
|
k, v = line.split("=", 1)
|
|
existing[k.strip()] = v.strip()
|
|
|
|
if value:
|
|
existing[env_name] = value
|
|
os.environ[env_name] = value
|
|
else:
|
|
existing.pop(env_name, None)
|
|
os.environ.pop(env_name, None)
|
|
|
|
overlay_path.write_text(
|
|
"\n".join(f"{k}={v}" for k, v in existing.items()) + ("\n" if existing else "")
|
|
)
|
|
try:
|
|
overlay_path.chmod(0o600)
|
|
except OSError:
|
|
pass
|
|
|
|
|
|
# ---------------------------------------------------------------------------
|
|
# Endpoints
|
|
# ---------------------------------------------------------------------------
|
|
|
|
|
|
@router.get("", response_model=List[MarketplaceResponse])
|
|
async def list_marketplaces(
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
counts = MarketplacePluginsRepository(conn).count_by_marketplace()
|
|
return [
|
|
_to_response(row, counts.get(row["id"], 0))
|
|
for row in MarketplaceRegistryRepository(conn).list_all()
|
|
]
|
|
|
|
|
|
@router.get("/{marketplace_id}/plugins", response_model=List[PluginResponse])
|
|
async def list_plugins(
|
|
marketplace_id: str,
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
"""Return the cached plugin list for a marketplace.
|
|
|
|
Rows come from `marketplace_plugins`, which is refreshed from
|
|
`.claude-plugin/marketplace.json` on every successful sync. An
|
|
unsynced marketplace will return an empty list.
|
|
"""
|
|
if not MarketplaceRegistryRepository(conn).get(marketplace_id):
|
|
raise HTTPException(status_code=404, detail="marketplace not found")
|
|
rows = MarketplacePluginsRepository(conn).list_for_marketplace(marketplace_id)
|
|
return [
|
|
PluginResponse(
|
|
name=r["name"],
|
|
description=r.get("description"),
|
|
version=r.get("version"),
|
|
author_name=r.get("author_name"),
|
|
homepage=r.get("homepage"),
|
|
category=r.get("category"),
|
|
source_type=r.get("source_type"),
|
|
source_spec=r.get("source_spec"),
|
|
)
|
|
for r in rows
|
|
]
|
|
|
|
|
|
@router.post("", response_model=MarketplaceResponse, status_code=201)
|
|
async def create_marketplace(
|
|
payload: CreateMarketplaceRequest,
|
|
request: Request,
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
slug = (payload.slug or "").strip().lower()
|
|
if not is_valid_slug(slug):
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="slug must match [a-z0-9][a-z0-9_-]{0,63} (1-64 chars, start with alnum)",
|
|
)
|
|
if not (payload.url or "").strip().lower().startswith("https://"):
|
|
raise HTTPException(status_code=400, detail="url must start with https://")
|
|
if not (payload.name or "").strip():
|
|
raise HTTPException(status_code=400, detail="name is required")
|
|
|
|
repo = MarketplaceRegistryRepository(conn)
|
|
if repo.get(slug):
|
|
raise HTTPException(status_code=409, detail=f"marketplace '{slug}' already exists")
|
|
|
|
token_env: Optional[str] = None
|
|
if payload.token:
|
|
token_env = _token_env_name(slug)
|
|
_persist_token(token_env, payload.token)
|
|
|
|
repo.register(
|
|
id=slug,
|
|
name=payload.name.strip(),
|
|
url=payload.url.strip(),
|
|
branch=(payload.branch or "").strip() or None,
|
|
token_env=token_env,
|
|
description=payload.description,
|
|
registered_by=user.get("email"),
|
|
)
|
|
_audit(
|
|
conn,
|
|
user["id"],
|
|
"marketplace.create",
|
|
slug,
|
|
{"url": payload.url, "has_token": bool(payload.token)},
|
|
)
|
|
return _to_response(repo.get(slug))
|
|
|
|
|
|
@router.patch("/{marketplace_id}", response_model=MarketplaceResponse)
|
|
async def update_marketplace(
|
|
marketplace_id: str,
|
|
payload: UpdateMarketplaceRequest,
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
repo = MarketplaceRegistryRepository(conn)
|
|
existing = repo.get(marketplace_id)
|
|
if not existing:
|
|
raise HTTPException(status_code=404, detail="marketplace not found")
|
|
|
|
# Start with the existing row; override fields the caller provided.
|
|
updated = {
|
|
"id": existing["id"],
|
|
"name": existing["name"],
|
|
"url": existing["url"],
|
|
"branch": existing.get("branch"),
|
|
"token_env": existing.get("token_env"),
|
|
"description": existing.get("description"),
|
|
"registered_by": existing.get("registered_by"),
|
|
}
|
|
changed: dict = {}
|
|
if payload.name is not None:
|
|
if not payload.name.strip():
|
|
raise HTTPException(status_code=400, detail="name cannot be empty")
|
|
updated["name"] = payload.name.strip()
|
|
changed["name"] = updated["name"]
|
|
if payload.url is not None:
|
|
url = payload.url.strip()
|
|
if not url.lower().startswith("https://"):
|
|
raise HTTPException(status_code=400, detail="url must start with https://")
|
|
updated["url"] = url
|
|
changed["url"] = url
|
|
if payload.branch is not None:
|
|
updated["branch"] = payload.branch.strip() or None
|
|
changed["branch"] = updated["branch"]
|
|
if payload.description is not None:
|
|
updated["description"] = payload.description
|
|
changed["description"] = payload.description
|
|
|
|
if payload.token is not None:
|
|
# None = untouched; "" = clear token_env binding; non-empty = rotate.
|
|
if payload.token == "":
|
|
if updated["token_env"]:
|
|
_persist_token(updated["token_env"], "")
|
|
updated["token_env"] = None
|
|
changed["token"] = "cleared"
|
|
else:
|
|
env_name = _token_env_name(marketplace_id)
|
|
_persist_token(env_name, payload.token)
|
|
updated["token_env"] = env_name
|
|
changed["token"] = "rotated"
|
|
|
|
repo.register(
|
|
id=updated["id"],
|
|
name=updated["name"],
|
|
url=updated["url"],
|
|
branch=updated["branch"],
|
|
token_env=updated["token_env"],
|
|
description=updated["description"],
|
|
registered_by=updated["registered_by"],
|
|
)
|
|
_audit(conn, user["id"], "marketplace.update", marketplace_id, changed)
|
|
counts = MarketplacePluginsRepository(conn).count_by_marketplace()
|
|
return _to_response(repo.get(marketplace_id), counts.get(marketplace_id, 0))
|
|
|
|
|
|
@router.delete("/{marketplace_id}", status_code=204)
|
|
async def delete_marketplace(
|
|
marketplace_id: str,
|
|
purge: bool = False,
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
repo = MarketplaceRegistryRepository(conn)
|
|
existing = repo.get(marketplace_id)
|
|
if not existing:
|
|
raise HTTPException(status_code=404, detail="marketplace not found")
|
|
|
|
# Also clear any overlay token binding so a re-created marketplace of the
|
|
# same slug doesn't accidentally inherit the old PAT.
|
|
if existing.get("token_env"):
|
|
_persist_token(existing["token_env"], "")
|
|
|
|
repo.unregister(marketplace_id)
|
|
# Drop cached plugin rows and any resource grants that reference plugins
|
|
# from this marketplace. resource_grants stores resource_id as
|
|
# "<marketplace_slug>/<plugin_name>" — match the slash-prefix via
|
|
# starts_with(), not LIKE: marketplace slugs may contain '_' (validated
|
|
# by [a-z0-9][a-z0-9_-]{0,63}) and LIKE would interpret it as a
|
|
# single-char wildcard, silently dropping grants from sibling
|
|
# marketplaces whose slug differs by exactly one character.
|
|
try:
|
|
conn.execute(
|
|
"DELETE FROM marketplace_plugins WHERE marketplace_id = ?",
|
|
[marketplace_id],
|
|
)
|
|
conn.execute(
|
|
"DELETE FROM resource_grants "
|
|
"WHERE resource_type = ? AND starts_with(resource_id, ? || '/')",
|
|
[ResourceType.MARKETPLACE_PLUGIN.value, marketplace_id],
|
|
)
|
|
# Drop user subscriptions to plugins from this marketplace so a
|
|
# re-registered slug doesn't inherit stale subscribe state.
|
|
from src.repositories.user_curated_subscriptions import (
|
|
UserCuratedSubscriptionsRepository,
|
|
)
|
|
UserCuratedSubscriptionsRepository(conn).delete_for_marketplace(
|
|
marketplace_id
|
|
)
|
|
except Exception as e:
|
|
logger.warning("cleanup for marketplace %s failed: %s", marketplace_id, e)
|
|
purged = False
|
|
if purge:
|
|
try:
|
|
purged = delete_marketplace_dir(marketplace_id)
|
|
except Exception as e:
|
|
logger.warning("delete_marketplace_dir(%s) failed: %s", marketplace_id, e)
|
|
|
|
_audit(
|
|
conn,
|
|
user["id"],
|
|
"marketplace.delete",
|
|
marketplace_id,
|
|
{"purged_disk": purged},
|
|
)
|
|
|
|
|
|
@router.post("/{marketplace_id}/sync")
|
|
async def trigger_sync(
|
|
marketplace_id: str,
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
try:
|
|
result = sync_one(marketplace_id)
|
|
except MarketplaceNotFound:
|
|
raise HTTPException(status_code=404, detail="marketplace not found")
|
|
except (RuntimeError, ValueError) as e:
|
|
_audit(conn, user["id"], "marketplace.sync_failed", marketplace_id, {"error": str(e)})
|
|
raise HTTPException(status_code=500, detail=str(e))
|
|
_audit(
|
|
conn,
|
|
user["id"],
|
|
"marketplace.sync",
|
|
marketplace_id,
|
|
{"commit": result["commit"], "action": result["action"]},
|
|
)
|
|
return result
|
|
|
|
|
|
@router.post("/sync-all")
|
|
def trigger_sync_all(
|
|
user: dict = Depends(require_admin),
|
|
conn: duckdb.DuckDBPyConnection = Depends(_get_db),
|
|
):
|
|
"""Sync every registered marketplace.
|
|
|
|
Wired up so the scheduler service can drive the nightly refresh over
|
|
HTTP. The previous implementation called ``src.marketplace.sync_marketplaces``
|
|
in-process from the scheduler container, which conflicted with the app's
|
|
long-lived ``system.duckdb`` handle (DuckDB allows only one writer per
|
|
file across processes). Routing through the app inherits the existing
|
|
connection without contention.
|
|
|
|
Declared ``def`` (not ``async def``) so FastAPI runs it in a thread
|
|
pool — :func:`sync_marketplaces` does blocking I/O (subprocess git
|
|
clones with ``GIT_TIMEOUT_SEC=300`` per repo, DuckDB writes, a
|
|
process-wide threading.Lock) and would freeze the event loop for the
|
|
duration of a bulk sync if it ran on the asyncio thread. Health
|
|
checks, login redirects, and every other concurrent request keep
|
|
serving while the bulk sync churns through the registry.
|
|
|
|
One audit row per call summarises the outcome — per-marketplace details
|
|
live in ``marketplace_registry`` and the per-call result payload below.
|
|
"""
|
|
result = sync_marketplaces()
|
|
# _audit appends "marketplace:" to the target id when writing the
|
|
# resource column. "_all" produces "marketplace:_all" — a stable,
|
|
# greppable sentinel for bulk-sync rows; the real per-marketplace
|
|
# commit/error breakdown is in the params payload.
|
|
_audit(
|
|
conn,
|
|
user["id"],
|
|
"marketplace.sync_all",
|
|
"_all",
|
|
{
|
|
"synced": [r.get("id") for r in result.get("synced", [])],
|
|
"errors": [{"id": e.get("id"), "error": e.get("error")} for e in result.get("errors", [])],
|
|
},
|
|
)
|
|
return result
|