simstudioai
diff --git a/‎apps/sim/app/api/table/[tableId]/metadata/route.ts‎
Lines changed: 65 additions & 0 deletions b/‎apps/sim/app/api/table/[tableId]/metadata/route.ts‎
Lines changed: 65 additions & 0 deletions
diff --git a/‎apps/sim/app/api/table/[tableId]/route.ts‎
Lines changed: 63 additions & 1 deletion b/‎apps/sim/app/api/table/[tableId]/route.ts‎
Lines changed: 63 additions & 1 deletion
diff --git a/‎apps/sim/app/api/table/[tableId]/rows/route.ts‎
Lines changed: 2 additions & 0 deletions b/‎apps/sim/app/api/table/[tableId]/rows/route.ts‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎apps/sim/app/api/workspaces/[id]/files/[fileId]/route.ts‎
Lines changed: 69 additions & 1 deletion b/‎apps/sim/app/api/workspaces/[id]/files/[fileId]/route.ts‎
Lines changed: 69 additions & 1 deletion
diff --git a/‎apps/sim/app/workspace/[workspaceId]/components/index.ts‎
Lines changed: 2 additions & 0 deletions b/‎apps/sim/app/workspace/[workspaceId]/components/index.ts‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎apps/sim/app/workspace/[workspaceId]/components/inline-rename-input.tsx‎
Lines changed: 38 additions & 0 deletions b/‎apps/sim/app/workspace/[workspaceId]/components/inline-rename-input.tsx‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎apps/sim/app/workspace/[workspaceId]/components/resource/components/resource-header/index.ts‎
Lines changed: 7 additions & 1 deletion b/‎apps/sim/app/workspace/[workspaceId]/components/resource/components/resource-header/index.ts‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎apps/sim/app/workspace/[workspaceId]/components/resource/components/resource-header/resource-header.tsx‎
Lines changed: 27 additions & 0 deletions b/‎apps/sim/app/workspace/[workspaceId]/components/resource/components/resource-header/resource-header.tsx‎
Lines changed: 27 additions & 0 deletions
@@ -0,0 +1,65 @@
+import { createLogger } from '@sim/logger'
+import { type NextRequest, NextResponse } from 'next/server'
+import { z } from 'zod'
+import { checkSessionOrInternalAuth } from '@/lib/auth/hybrid'
+import { generateRequestId } from '@/lib/core/utils/request'
+import type { TableMetadata } from '@/lib/table'
+import { updateTableMetadata } from '@/lib/table'
+import { accessError, checkAccess } from '@/app/api/table/utils'
+
+const logger = createLogger('TableMetadataAPI')
+
+const MetadataSchema = z.object({
+  workspaceId: z.string().min(1, 'Workspace ID is required'),
+  metadata: z.object({
+    columnWidths: z.record(z.number().positive()).optional(),
+  }),
+})
+
+interface TableRouteParams {
+  params: Promise<{ tableId: string }>
+}
+
+/** PUT /api/table/[tableId]/metadata - Update table UI metadata (column widths, etc.) */
+export async function PUT(request: NextRequest, { params }: TableRouteParams) {
+  const requestId = generateRequestId()
+  const { tableId } = await params
+
+  try {
+    const authResult = await checkSessionOrInternalAuth(request, { requireWorkflowId: false })
+    if (!authResult.success || !authResult.userId) {
+      logger.warn(`[${requestId}] Unauthorized metadata update attempt`)
+      return NextResponse.json({ error: 'Authentication required' }, { status: 401 })
+    }
+
+    const body = await request.json()
+    const validated = MetadataSchema.parse(body)
+
+    const result = await checkAccess(tableId, authResult.userId, 'write')
+    if (!result.ok) return accessError(result, requestId, tableId)
+
+    const { table } = result
+
+    if (table.workspaceId !== validated.workspaceId) {
+      return NextResponse.json({ error: 'Invalid workspace ID' }, { status: 400 })
+    }
+
+    const updated = await updateTableMetadata(
+      tableId,
+      validated.metadata,
+      table.metadata as TableMetadata | null
+    )
+
+    return NextResponse.json({ success: true, data: { metadata: updated } })
+  } catch (error) {
+    if (error instanceof z.ZodError) {
+      return NextResponse.json(
+        { error: 'Validation error', details: error.errors },
+        { status: 400 }
+      )
+    }
+
+    logger.error(`[${requestId}] Error updating table metadata:`, error)
+    return NextResponse.json({ error: 'Failed to update metadata' }, { status: 500 })
+  }
+}
@@ -3,7 +3,7 @@ import { type NextRequest, NextResponse } from 'next/server'
 import { z } from 'zod'
 import { checkSessionOrInternalAuth } from '@/lib/auth/hybrid'
 import { generateRequestId } from '@/lib/core/utils/request'
-import { deleteTable, type TableSchema } from '@/lib/table'
+import { deleteTable, NAME_PATTERN, renameTable, TABLE_LIMITS, type TableSchema } from '@/lib/table'
 import { accessError, checkAccess, normalizeColumn } from '@/app/api/table/utils'
 
 const logger = createLogger('TableDetailAPI')
@@ -56,6 +56,7 @@ export async function GET(request: NextRequest, { params }: TableRouteParams) {
           schema: {
             columns: schemaData.columns.map(normalizeColumn),
           },
+          metadata: table.metadata ?? null,
           rowCount: table.rowCount,
           maxRows: table.maxRows,
           createdAt:
@@ -82,6 +83,67 @@ export async function GET(request: NextRequest, { params }: TableRouteParams) {
   }
 }
 
+const PatchTableSchema = z.object({
+  workspaceId: z.string().min(1, 'Workspace ID is required'),
+  name: z
+    .string()
+    .min(1, 'Name is required')
+    .max(
+      TABLE_LIMITS.MAX_TABLE_NAME_LENGTH,
+      `Name must be at most ${TABLE_LIMITS.MAX_TABLE_NAME_LENGTH} characters`
+    )
+    .regex(
+      NAME_PATTERN,
+      'Name must start with letter or underscore, followed by alphanumeric or underscore'
+    ),
+})
+
+/** PATCH /api/table/[tableId] - Renames a table. */
+export async function PATCH(request: NextRequest, { params }: TableRouteParams) {
+  const requestId = generateRequestId()
+  const { tableId } = await params
+
+  try {
+    const authResult = await checkSessionOrInternalAuth(request, { requireWorkflowId: false })
+    if (!authResult.success || !authResult.userId) {
+      logger.warn(`[${requestId}] Unauthorized table rename attempt`)
+      return NextResponse.json({ error: 'Authentication required' }, { status: 401 })
+    }
+
+    const body = await request.json()
+    const validated = PatchTableSchema.parse(body)
+
+    const result = await checkAccess(tableId, authResult.userId, 'write')
+    if (!result.ok) return accessError(result, requestId, tableId)
+
+    const { table } = result
+
+    if (table.workspaceId !== validated.workspaceId) {
+      return NextResponse.json({ error: 'Invalid workspace ID' }, { status: 400 })
+    }
+
+    const updated = await renameTable(tableId, validated.name, requestId)
+
+    return NextResponse.json({
+      success: true,
+      data: { table: updated },
+    })
+  } catch (error) {
+    if (error instanceof z.ZodError) {
+      return NextResponse.json(
+        { error: 'Validation error', details: error.errors },
+        { status: 400 }
+      )
+    }
+
+    logger.error(`[${requestId}] Error renaming table:`, error)
+    return NextResponse.json(
+      { error: error instanceof Error ? error.message : 'Failed to rename table' },
+      { status: 500 }
+    )
+  }
+}
+
 /** DELETE /api/table/[tableId] - Deletes a table and all its rows. */
 export async function DELETE(request: NextRequest, { params }: TableRouteParams) {
   const requestId = generateRequestId()
 
@@ -27,6 +27,7 @@ const logger = createLogger('TableRowsAPI')
 const InsertRowSchema = z.object({
   workspaceId: z.string().min(1, 'Workspace ID is required'),
   data: z.record(z.unknown(), { required_error: 'Row data is required' }),
+  position: z.number().int().min(0).optional(),
 })
 
 const BatchInsertRowsSchema = z.object({
@@ -235,6 +236,7 @@ export async function POST(request: NextRequest, { params }: TableRowsRouteParam
         data: rowData,
         workspaceId: validated.workspaceId,
         userId: authResult.userId,
+        position: validated.position,
       },
       table,
       requestId
 
@@ -3,13 +3,81 @@ import { type NextRequest, NextResponse } from 'next/server'
 import { AuditAction, AuditResourceType, recordAudit } from '@/lib/audit/log'
 import { getSession } from '@/lib/auth'
 import { generateRequestId } from '@/lib/core/utils/request'
-import { deleteWorkspaceFile } from '@/lib/uploads/contexts/workspace'
+import {
+  deleteWorkspaceFile,
+  FileConflictError,
+  renameWorkspaceFile,
+} from '@/lib/uploads/contexts/workspace'
 import { getUserEntityPermissions } from '@/lib/workspaces/permissions/utils'
 
 export const dynamic = 'force-dynamic'
 
 const logger = createLogger('WorkspaceFileAPI')
 
+/**
+ * PATCH /api/workspaces/[id]/files/[fileId]
+ * Rename a workspace file (requires write permission)
+ */
+export async function PATCH(
+  request: NextRequest,
+  { params }: { params: Promise<{ id: string; fileId: string }> }
+) {
+  const requestId = generateRequestId()
+  const { id: workspaceId, fileId } = await params
+
+  try {
+    const session = await getSession()
+    if (!session?.user?.id) {
+      return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
+    }
+
+    const userPermission = await getUserEntityPermissions(session.user.id, 'workspace', workspaceId)
+    if (userPermission !== 'admin' && userPermission !== 'write') {
+      logger.warn(
+        `[${requestId}] User ${session.user.id} lacks write permission for workspace ${workspaceId}`
+      )
+      return NextResponse.json({ error: 'Insufficient permissions' }, { status: 403 })
+    }
+
+    const body = await request.json()
+    const { name } = body
+
+    if (!name || typeof name !== 'string' || !name.trim()) {
+      return NextResponse.json({ error: 'Name is required' }, { status: 400 })
+    }
+
+    const updatedFile = await renameWorkspaceFile(workspaceId, fileId, name)
+
+    logger.info(`[${requestId}] Renamed workspace file: ${fileId} to "${updatedFile.name}"`)
+
+    recordAudit({
+      workspaceId,
+      actorId: session.user.id,
+      actorName: session.user.name,
+      actorEmail: session.user.email,
+      action: AuditAction.FILE_UPDATED,
+      resourceType: AuditResourceType.FILE,
+      resourceId: fileId,
+      description: `Renamed file to "${updatedFile.name}"`,
+      request,
+    })
+
+    return NextResponse.json({
+      success: true,
+      file: updatedFile,
+    })
+  } catch (error) {
+    logger.error(`[${requestId}] Error renaming workspace file:`, error)
+    return NextResponse.json(
+      {
+        success: false,
+        error: error instanceof Error ? error.message : 'Failed to rename file',
+      },
+      { status: error instanceof FileConflictError ? 409 : 500 }
+    )
+  }
+}
+
 /**
  * DELETE /api/workspaces/[id]/files/[fileId]
  * Delete a workspace file (requires write permission)
 
@@ -1,6 +1,8 @@
 export { ErrorState, type ErrorStateProps } from './error'
+export { InlineRenameInput } from './inline-rename-input'
 export { ownerCell } from './resource/components/owner-cell/owner-cell'
 export type {
+  BreadcrumbEditing,
   BreadcrumbItem,
   CreateAction,
   DropdownOption,
 
@@ -0,0 +1,38 @@
+'use client'
+
+import { useEffect, useRef } from 'react'
+
+interface InlineRenameInputProps {
+  value: string
+  onChange: (value: string) => void
+  onSubmit: () => void
+  onCancel: () => void
+}
+
+export function InlineRenameInput({ value, onChange, onSubmit, onCancel }: InlineRenameInputProps) {
+  const inputRef = useRef<HTMLInputElement>(null)
+
+  useEffect(() => {
+    const el = inputRef.current
+    if (el) {
+      el.focus()
+      el.select()
+    }
+  }, [])
+
+  return (
+    <input
+      ref={inputRef}
+      type='text'
+      value={value}
+      onChange={(e) => onChange(e.target.value)}
+      onKeyDown={(e) => {
+        if (e.key === 'Enter') onSubmit()
+        if (e.key === 'Escape') onCancel()
+      }}
+      onBlur={onSubmit}
+      onClick={(e) => e.stopPropagation()}
+      className='min-w-0 flex-1 truncate border-0 bg-transparent p-0 font-medium text-[14px] text-[var(--text-body)] outline-none focus:outline-none focus:ring-0'
+    />
+  )
+}
@@ -1,2 +1,8 @@
-export type { BreadcrumbItem, CreateAction, DropdownOption, HeaderAction } from './resource-header'
+export type {
+  BreadcrumbEditing,
+  BreadcrumbItem,
+  CreateAction,
+  DropdownOption,
+  HeaderAction,
+} from './resource-header'
 export { ResourceHeader } from './resource-header'
@@ -9,6 +9,7 @@ import {
   Plus,
 } from '@/components/emcn'
 import { cn } from '@/lib/core/utils/cn'
+import { InlineRenameInput } from '@/app/workspace/[workspaceId]/components/inline-rename-input'
 
 export interface DropdownOption {
   label: string
@@ -17,10 +18,19 @@ export interface DropdownOption {
   disabled?: boolean
 }
 
+export interface BreadcrumbEditing {
+  isEditing: boolean
+  value: string
+  onChange: (value: string) => void
+  onSubmit: () => void
+  onCancel: () => void
+}
+
 export interface BreadcrumbItem {
   label: string
   onClick?: () => void
   dropdownItems?: DropdownOption[]
+  editing?: BreadcrumbEditing
 }
 
 export interface HeaderAction {
@@ -73,6 +83,7 @@ export function ResourceHeader({
                   label={crumb.label}
                   onClick={crumb.onClick}
                   dropdownItems={crumb.dropdownItems}
+                  editing={crumb.editing}
                 />
               </Fragment>
             ))
@@ -125,12 +136,28 @@ function BreadcrumbSegment({
   label,
   onClick,
   dropdownItems,
+  editing,
 }: {
   icon?: React.ElementType
   label: string
   onClick?: () => void
   dropdownItems?: DropdownOption[]
+  editing?: BreadcrumbEditing
 }) {
+  if (editing?.isEditing) {
+    return (
+      <span className='inline-flex items-center px-[8px] py-[4px]'>
+        {Icon && <Icon className='mr-[12px] h-[14px] w-[14px] text-[var(--text-icon)]' />}
+        <InlineRenameInput
+          value={editing.value}
+          onChange={editing.onChange}
+          onSubmit={editing.onSubmit}
+          onCancel={editing.onCancel}
+        />
+      </span>
+    )
+  }
+
   const content = (
     <>
       {Icon && <Icon className='mr-[12px] h-[14px] w-[14px] text-[var(--text-icon)]' />}