feat: Phase 32 — File Attachments for invoices, bills, expenses, and projects

https://claude.ai/code/session_01RdUGwo74JXChRCF88Yu27d

Author: claude

erp/app/Modules/Finance/Http/Controllers/AttachmentController.php

@@ -0,0 +1,70 @@
+<?php
+
+namespace App\Modules\Finance\Http\Controllers;
+
+use App\Http\Controllers\Controller;
+use App\Modules\Finance\Models\Attachment;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
+use Illuminate\Http\Response;
+use Illuminate\Support\Facades\Storage;
+
+class AttachmentController extends Controller
+{
+    private array $allowedModels = [
+        'invoices'       => \App\Modules\Finance\Models\Invoice::class,
+        'bills'          => \App\Modules\Finance\Models\Bill::class,
+        'expense-claims' => \App\Modules\HR\Models\ExpenseClaim::class,
+        'projects'       => \App\Modules\Finance\Models\Project::class,
+    ];
+
+    public function store(Request $request, string $modelType, int $modelId): RedirectResponse
+    {
+        abort_unless(array_key_exists($modelType, $this->allowedModels), 404);
+
+        $this->authorize('create', Attachment::class);
+
+        $request->validate([
+            'file' => 'required|file|max:20480|mimes:pdf,png,jpg,jpeg,webp,gif,csv,xlsx,docx,doc',
+        ]);
+
+        $modelClass = $this->allowedModels[$modelType];
+        $model = $modelClass::findOrFail($modelId);
+
+        $file = $request->file('file');
+        $path = $file->store("attachments/{$modelType}/{$modelId}", 'local');
+
+        Attachment::create([
+            'tenant_id'       => auth()->user()->tenant_id,
+            'attachable_type' => $modelClass,
+            'attachable_id'   => $modelId,
+            'filename'        => $file->getClientOriginalName(),
+            'disk'            => 'local',
+            'path'            => $path,
+            'mime_type'       => $file->getMimeType(),
+            'size'            => $file->getSize(),
+            'uploaded_by'     => auth()->id(),
+        ]);
+
+        return back()->with('success', 'File attached.');
+    }
+
+    public function download(Attachment $attachment): Response|\Symfony\Component\HttpFoundation\StreamedResponse
+    {
+        $this->authorize('view', $attachment);
+
+        abort_unless(Storage::disk($attachment->disk)->exists($attachment->path), 404);
+
+        return Storage::disk($attachment->disk)->download($attachment->path, $attachment->filename);
+    }
+
+    public function destroy(Attachment $attachment): RedirectResponse
+    {
+        $this->authorize('delete', $attachment);
+
+        Storage::disk($attachment->disk)->delete($attachment->path);
+        $attachment->delete();
+
+        return back()->with('success', 'Attachment deleted.');
+    }
+}

erp/app/Modules/Finance/Http/Controllers/BillController.php

@@ -105,7 +105,7 @@ public function show(Bill $bill): Response
     {
         $this->authorize('view', $bill);
 
-        $bill->load(['contact', 'items', 'payments', 'creator']);
+        $bill->load(['contact', 'items', 'payments', 'creator', 'attachments']);
 
         return Inertia::render('Finance/Bills/Show', [
             'bill'        => new BillResource($bill),

erp/app/Modules/Finance/Http/Controllers/InvoiceController.php

@@ -106,7 +106,7 @@ public function show(Invoice $invoice): Response
     {
         $this->authorize('view', $invoice);
 
-        $invoice->load(['contact', 'items', 'payments', 'creator']);
+        $invoice->load(['contact', 'items', 'payments', 'creator', 'attachments']);
 
         return Inertia::render('Finance/Invoices/Show', [
             'invoice'     => new InvoiceResource($invoice),
@@ -175,7 +175,7 @@ public function print(Invoice $invoice): Response
     {
         $this->authorize('view', $invoice);
 
-        $invoice->load(['contact', 'items', 'payments', 'creator']);
+        $invoice->load(['contact', 'items', 'payments', 'creator', 'attachments']);
 
         $tenantId = auth()->user()->tenant_id;
 

erp/app/Modules/Finance/Http/Controllers/ProjectController.php

@@ -87,7 +87,7 @@ public function show(Project $project): Response
     {
         $this->authorize('view', $project);
 
-        $project->load(['timeEntries.user', 'contact', 'invoice']);
+        $project->load(['timeEntries.user', 'contact', 'invoice', 'attachments']);
 
         return Inertia::render('Finance/Projects/Show', [
             'project' => [
@@ -104,6 +104,11 @@ public function show(Project $project): Response
                 'invoice'      => $project->invoice ? ['id' => $project->invoice->id, 'reference' => $project->invoice->number ?? '#' . $project->invoice->id] : null,
                 'total_hours'  => $project->total_hours,
                 'billable_hours' => $project->billable_hours,
+                'attachments'  => $project->attachments->map(fn ($a) => [
+                    'id' => $a->id, 'filename' => $a->filename, 'disk' => $a->disk,
+                    'path' => $a->path, 'mime_type' => $a->mime_type, 'size' => $a->size,
+                    'uploaded_by' => $a->uploaded_by, 'created_at' => $a->created_at?->toIso8601String(),
+                ]),
                 'time_entries' => $project->timeEntries->map(fn ($e) => [
                     'id'          => $e->id,
                     'project_id'  => $e->project_id,

erp/app/Modules/Finance/Http/Resources/BillResource.php

@@ -49,6 +49,11 @@ public function toArray(Request $request): array
                 fn () => $this->amount_due
             ),
             'transitions'   => $this->availableTransitions(),
+            'attachments'   => $this->whenLoaded('attachments', fn () => $this->attachments->map(fn ($a) => [
+                'id' => $a->id, 'filename' => $a->filename, 'disk' => $a->disk,
+                'path' => $a->path, 'mime_type' => $a->mime_type, 'size' => $a->size,
+                'uploaded_by' => $a->uploaded_by, 'created_at' => $a->created_at?->toIso8601String(),
+            ])),
             'creator'       => $this->whenLoaded('creator', fn () => $this->creator?->name),
             'created_at'    => $this->created_at?->toDateString(),
         ];

erp/app/Modules/Finance/Http/Resources/InvoiceResource.php

@@ -49,6 +49,11 @@ public function toArray(Request $request): array
                 fn () => $this->amount_due
             ),
             'transitions'   => $this->availableTransitions(),
+            'attachments'   => $this->whenLoaded('attachments', fn () => $this->attachments->map(fn ($a) => [
+                'id' => $a->id, 'filename' => $a->filename, 'disk' => $a->disk,
+                'path' => $a->path, 'mime_type' => $a->mime_type, 'size' => $a->size,
+                'uploaded_by' => $a->uploaded_by, 'created_at' => $a->created_at?->toIso8601String(),
+            ])),
             'creator'       => $this->whenLoaded('creator', fn () => $this->creator?->name),
             'created_at'    => $this->created_at?->toDateString(),
         ];

erp/app/Modules/Finance/Models/Attachment.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Modules\Finance\Models;
+
+use App\Modules\Core\Traits\BelongsToTenant;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Database\Eloquent\Relations\BelongsTo;
+use Illuminate\Database\Eloquent\Relations\MorphTo;
+
+class Attachment extends Model
+{
+    use BelongsToTenant;
+
+    protected $fillable = [
+        'tenant_id', 'attachable_type', 'attachable_id',
+        'filename', 'disk', 'path', 'mime_type', 'size', 'uploaded_by',
+    ];
+
+    public function attachable(): MorphTo
+    {
+        return $this->morphTo();
+    }
+
+    public function uploader(): BelongsTo
+    {
+        return $this->belongsTo(\App\Models\User::class, 'uploaded_by');
+    }
+}

erp/app/Modules/Finance/Models/Bill.php

@@ -6,6 +6,7 @@
 use App\Modules\Core\Traits\BelongsToTenant;
 use App\Modules\Core\Traits\HasAuditLog;
 use App\Modules\Finance\Traits\HasLineItemTotals;
+use App\Modules\Finance\Traits\HasAttachments;
 use App\Modules\Finance\Traits\HasStatusTransitions;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
@@ -18,6 +19,7 @@ class Bill extends Model
     use HasAuditLog;
     use SoftDeletes;
     use HasLineItemTotals;
+    use HasAttachments;
     use HasStatusTransitions;
 
     protected $fillable = [

erp/app/Modules/Finance/Models/Invoice.php

@@ -6,6 +6,7 @@
 use App\Modules\Core\Traits\BelongsToTenant;
 use App\Modules\Core\Traits\HasAuditLog;
 use App\Modules\Finance\Traits\HasLineItemTotals;
+use App\Modules\Finance\Traits\HasAttachments;
 use App\Modules\Finance\Traits\HasStatusTransitions;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
@@ -18,6 +19,7 @@ class Invoice extends Model
     use HasAuditLog;
     use SoftDeletes;
     use HasLineItemTotals;
+    use HasAttachments;
     use HasStatusTransitions;
 
     protected $fillable = [

erp/app/Modules/Finance/Models/Project.php

@@ -3,6 +3,7 @@
 namespace App\Modules\Finance\Models;
 
 use App\Modules\Core\Traits\BelongsToTenant;
+use App\Modules\Finance\Traits\HasAttachments;
 use Illuminate\Database\Eloquent\Builder;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
@@ -12,6 +13,7 @@
 class Project extends Model
 {
     use BelongsToTenant;
+    use HasAttachments;
     use SoftDeletes;
 
     protected $fillable = [