bakery-ia/services/auth/app/api/auth.py

# ================================================================
# services/auth/app/api/auth.py - Updated with modular monitoring
# ================================================================
"""
Authentication API routes - Enhanced with proper metrics access
"""

from fastapi import APIRouter, Depends, HTTPException, status, Request
from sqlalchemy.ext.asyncio import AsyncSession
import structlog

from app.core.database import get_db
from app.schemas.auth import (
    UserRegistration, UserLogin, TokenResponse, 
    RefreshTokenRequest, UserResponse
)
from app.services.auth_service import AuthService
from app.core.security import security_manager
from shared.monitoring.decorators import track_execution_time, count_calls

logger = structlog.get_logger()
router = APIRouter()

def get_metrics_collector(request: Request):
    """Get metrics collector from app state"""
    return getattr(request.app.state, 'metrics_collector', None)

@router.post("/register", response_model=UserResponse)
@track_execution_time("registration_duration_seconds", "auth-service")
async def register(
    user_data: UserRegistration,
    request: Request,
    db: AsyncSession = Depends(get_db)
):
    """Register a new user"""
    metrics = get_metrics_collector(request)
    
    try:
        result = await AuthService.register_user(user_data, db)
        
        # Record successful registration
        if metrics:
            metrics.increment_counter("registration_total", labels={"status": "success"})
        
        logger.info(f"User registration successful: {user_data.email}")
        return result
        
    except HTTPException as e:
        # Record failed registration
        if metrics:
            metrics.increment_counter("registration_total", labels={"status": "failed"})
        logger.warning(f"Registration failed for {user_data.email}: {e.detail}")
        raise
        
    except Exception as e:
        # Record error
        if metrics:
            metrics.increment_counter("registration_total", labels={"status": "error"})
        logger.error(f"Registration error for {user_data.email}: {e}")
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail="Registration failed"
        )

@router.post("/login", response_model=TokenResponse)
@track_execution_time("login_duration_seconds", "auth-service")
async def login(
    login_data: UserLogin,
    request: Request,
    db: AsyncSession = Depends(get_db)
):
    """User login"""
    metrics = get_metrics_collector(request)
    
    try:
        ip_address = request.client.host
        user_agent = request.headers.get("user-agent", "")
        
        result = await AuthService.login_user(login_data, db, ip_address, user_agent)
        
        # Record successful login
        if metrics:
            metrics.increment_counter("login_success_total")
        
        logger.info(f"Login successful for {login_data.email}")
        return result
        
    except HTTPException as e:
        # Record failed login
        if metrics:
            metrics.increment_counter("login_failure_total", labels={"reason": "auth_failed"})
        logger.warning(f"Login failed for {login_data.email}: {e.detail}")
        raise
        
    except Exception as e:
        # Record login error
        if metrics:
            metrics.increment_counter("login_failure_total", labels={"reason": "error"})
        logger.error(f"Login error for {login_data.email}: {e}")
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail="Login failed"
        )

@router.post("/refresh", response_model=TokenResponse)
@track_execution_time("token_refresh_duration_seconds", "auth-service")
async def refresh_token(
    refresh_data: RefreshTokenRequest,
    request: Request,
    db: AsyncSession = Depends(get_db)
):
    """Refresh access token"""
    metrics = get_metrics_collector(request)
    
    try:
        result = await AuthService.refresh_token(refresh_data.refresh_token, db)
        
        # Record successful refresh
        if metrics:
            metrics.increment_counter("token_refresh_total", labels={"status": "success"})
        
        return result
        
    except HTTPException as e:
        # Record failed refresh
        if metrics:
            metrics.increment_counter("token_refresh_total", labels={"status": "failed"})
        raise
        
    except Exception as e:
        # Record refresh error
        if metrics:
            metrics.increment_counter("token_refresh_total", labels={"status": "error"})
        logger.error(f"Token refresh error: {e}")
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail="Token refresh failed"
        )

@router.post("/verify")
async def verify_token(
    request: Request,
    db: AsyncSession = Depends(get_db)
):
    """Verify access token"""
    metrics = get_metrics_collector(request)
    
    try:
        auth_header = request.headers.get("Authorization")
        if not auth_header or not auth_header.startswith("Bearer "):
            if metrics:
                metrics.increment_counter("token_verify_total", labels={"status": "no_token"})
            raise HTTPException(
                status_code=status.HTTP_401_UNAUTHORIZED,
                detail="Missing or invalid authorization header"
            )
        
        token = auth_header.split(" ")[1]
        payload = await AuthService.verify_token(token)
        
        # Record successful verification
        if metrics:
            metrics.increment_counter("token_verify_total", labels={"status": "success"})
        
        return {"valid": True, "user_id": payload["sub"]}
        
    except HTTPException as e:
        # Record failed verification
        if metrics:
            metrics.increment_counter("token_verify_total", labels={"status": "failed"})
        raise
        
    except Exception as e:
        # Record verification error
        if metrics:
            metrics.increment_counter("token_verify_total", labels={"status": "error"})
        logger.error(f"Token verification error: {e}")
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail="Token verification failed"
        )

@router.post("/logout")
async def logout(
    request: Request,
    db: AsyncSession = Depends(get_db)
):
    """User logout"""
    metrics = get_metrics_collector(request)
    
    try:
        auth_header = request.headers.get("Authorization")
        if not auth_header or not auth_header.startswith("Bearer "):
            if metrics:
                metrics.increment_counter("logout_total", labels={"status": "no_token"})
            raise HTTPException(
                status_code=status.HTTP_401_UNAUTHORIZED,
                detail="Missing or invalid authorization header"
            )
        
        token = auth_header.split(" ")[1]
        await AuthService.logout_user(token, db)
        
        # Record successful logout
        if metrics:
            metrics.increment_counter("logout_total", labels={"status": "success"})
        
        return {"message": "Logged out successfully"}
        
    except HTTPException as e:
        # Record failed logout
        if metrics:
            metrics.increment_counter("logout_total", labels={"status": "failed"})
        raise
        
    except Exception as e:
        # Record logout error
        if metrics:
            metrics.increment_counter("logout_total", labels={"status": "error"})
        logger.error(f"Logout error: {e}")
        raise HTTPException(
            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
            detail="Logout failed"
        )
Adds auth module 2025-07-17 21:25:27 +02:00			`# ================================================================`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# services/auth/app/api/auth.py - Updated with modular monitoring`
Adds auth module 2025-07-17 21:25:27 +02:00			`# ================================================================`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`"""`
Fix shared issues 2025-07-18 12:34:28 +02:00			`Authentication API routes - Enhanced with proper metrics access`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`"""`

			`from fastapi import APIRouter, Depends, HTTPException, status, Request`
			`from sqlalchemy.ext.asyncio import AsyncSession`
Fix imports 2025-07-18 14:41:39 +02:00			`import structlog`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00
			`from app.core.database import get_db`
Adds auth module 2025-07-17 21:25:27 +02:00			`from app.schemas.auth import (`
			`UserRegistration, UserLogin, TokenResponse,`
			`RefreshTokenRequest, UserResponse`
			`)`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`from app.services.auth_service import AuthService`
			`from app.core.security import security_manager`
Fix shared issues 2025-07-18 12:34:28 +02:00			`from shared.monitoring.decorators import track_execution_time, count_calls`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00
Fix imports 2025-07-18 14:41:39 +02:00			`logger = structlog.get_logger()`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`router = APIRouter()`
Fix shared issues 2025-07-18 12:34:28 +02:00
			`def get_metrics_collector(request: Request):`
			`"""Get metrics collector from app state"""`
			`return getattr(request.app.state, 'metrics_collector', None)`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00
			`@router.post("/register", response_model=UserResponse)`
Fix shared issues 2025-07-18 12:34:28 +02:00			`@track_execution_time("registration_duration_seconds", "auth-service")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`async def register(`
			`user_data: UserRegistration,`
Fix shared issues 2025-07-18 12:34:28 +02:00			`request: Request,`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`db: AsyncSession = Depends(get_db)`
			`):`
			`"""Register a new user"""`
Fix shared issues 2025-07-18 12:34:28 +02:00			`metrics = get_metrics_collector(request)`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`try:`
Adds auth module 2025-07-17 21:25:27 +02:00			`result = await AuthService.register_user(user_data, db)`
Fix shared issues 2025-07-18 12:34:28 +02:00
			`# Record successful registration`
			`if metrics:`
			`metrics.increment_counter("registration_total", labels={"status": "success"})`

Adds auth module 2025-07-17 21:25:27 +02:00			`logger.info(f"User registration successful: {user_data.email}")`
			`return result`
Fix shared issues 2025-07-18 12:34:28 +02:00
			`except HTTPException as e:`
			`# Record failed registration`
			`if metrics:`
			`metrics.increment_counter("registration_total", labels={"status": "failed"})`
			`logger.warning(f"Registration failed for {user_data.email}: {e.detail}")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise`
Fix shared issues 2025-07-18 12:34:28 +02:00
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`except Exception as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record error`
			`if metrics:`
			`metrics.increment_counter("registration_total", labels={"status": "error"})`
Adds auth module 2025-07-17 21:25:27 +02:00			`logger.error(f"Registration error for {user_data.email}: {e}")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise HTTPException(`
			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="Registration failed"`
			`)`

			`@router.post("/login", response_model=TokenResponse)`
Fix shared issues 2025-07-18 12:34:28 +02:00			`@track_execution_time("login_duration_seconds", "auth-service")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`async def login(`
			`login_data: UserLogin,`
			`request: Request,`
			`db: AsyncSession = Depends(get_db)`
			`):`
			`"""User login"""`
Fix shared issues 2025-07-18 12:34:28 +02:00			`metrics = get_metrics_collector(request)`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`try:`
			`ip_address = request.client.host`
			`user_agent = request.headers.get("user-agent", "")`

Adds auth module 2025-07-17 21:25:27 +02:00			`result = await AuthService.login_user(login_data, db, ip_address, user_agent)`
Fix shared issues 2025-07-18 12:34:28 +02:00
			`# Record successful login`
			`if metrics:`
			`metrics.increment_counter("login_success_total")`

			`logger.info(f"Login successful for {login_data.email}")`
Adds auth module 2025-07-17 21:25:27 +02:00			`return result`
Fix shared issues 2025-07-18 12:34:28 +02:00
Adds auth module 2025-07-17 21:25:27 +02:00			`except HTTPException as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record failed login`
			`if metrics:`
			`metrics.increment_counter("login_failure_total", labels={"reason": "auth_failed"})`
Adds auth module 2025-07-17 21:25:27 +02:00			`logger.warning(f"Login failed for {login_data.email}: {e.detail}")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise`
Fix shared issues 2025-07-18 12:34:28 +02:00
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`except Exception as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record login error`
			`if metrics:`
			`metrics.increment_counter("login_failure_total", labels={"reason": "error"})`
Adds auth module 2025-07-17 21:25:27 +02:00			`logger.error(f"Login error for {login_data.email}: {e}")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise HTTPException(`
			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="Login failed"`
			`)`

			`@router.post("/refresh", response_model=TokenResponse)`
Fix shared issues 2025-07-18 12:34:28 +02:00			`@track_execution_time("token_refresh_duration_seconds", "auth-service")`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`async def refresh_token(`
			`refresh_data: RefreshTokenRequest,`
Fix shared issues 2025-07-18 12:34:28 +02:00			`request: Request,`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`db: AsyncSession = Depends(get_db)`
			`):`
			`"""Refresh access token"""`
Fix shared issues 2025-07-18 12:34:28 +02:00			`metrics = get_metrics_collector(request)`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`try:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`result = await AuthService.refresh_token(refresh_data.refresh_token, db)`

			`# Record successful refresh`
			`if metrics:`
			`metrics.increment_counter("token_refresh_total", labels={"status": "success"})`

			`return result`

			`except HTTPException as e:`
			`# Record failed refresh`
			`if metrics:`
			`metrics.increment_counter("token_refresh_total", labels={"status": "failed"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise`
Fix shared issues 2025-07-18 12:34:28 +02:00
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`except Exception as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record refresh error`
			`if metrics:`
			`metrics.increment_counter("token_refresh_total", labels={"status": "error"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`logger.error(f"Token refresh error: {e}")`
			`raise HTTPException(`
			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="Token refresh failed"`
			`)`

			`@router.post("/verify")`
			`async def verify_token(`
			`request: Request,`
			`db: AsyncSession = Depends(get_db)`
			`):`
			`"""Verify access token"""`
Fix shared issues 2025-07-18 12:34:28 +02:00			`metrics = get_metrics_collector(request)`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`try:`
			`auth_header = request.headers.get("Authorization")`
			`if not auth_header or not auth_header.startswith("Bearer "):`
Fix shared issues 2025-07-18 12:34:28 +02:00			`if metrics:`
			`metrics.increment_counter("token_verify_total", labels={"status": "no_token"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
Fix shared issues 2025-07-18 12:34:28 +02:00			`detail="Missing or invalid authorization header"`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`)`

			`token = auth_header.split(" ")[1]`
Fix token issue 2 2025-07-18 17:14:30 +02:00			`payload = await AuthService.verify_token(token)`
Fix shared issues 2025-07-18 12:34:28 +02:00
			`# Record successful verification`
			`if metrics:`
			`metrics.increment_counter("token_verify_total", labels={"status": "success"})`

			`return {"valid": True, "user_id": payload["sub"]}`

			`except HTTPException as e:`
			`# Record failed verification`
			`if metrics:`
			`metrics.increment_counter("token_verify_total", labels={"status": "failed"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`raise`
Fix shared issues 2025-07-18 12:34:28 +02:00
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`except Exception as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record verification error`
			`if metrics:`
			`metrics.increment_counter("token_verify_total", labels={"status": "error"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`logger.error(f"Token verification error: {e}")`
			`raise HTTPException(`
			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="Token verification failed"`
			`)`

			`@router.post("/logout")`
			`async def logout(`
			`request: Request,`
			`db: AsyncSession = Depends(get_db)`
			`):`
Fix shared issues 2025-07-18 12:34:28 +02:00			`"""User logout"""`
			`metrics = get_metrics_collector(request)`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`try:`
			`auth_header = request.headers.get("Authorization")`
Fix shared issues 2025-07-18 12:34:28 +02:00			`if not auth_header or not auth_header.startswith("Bearer "):`
			`if metrics:`
			`metrics.increment_counter("logout_total", labels={"status": "no_token"})`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail="Missing or invalid authorization header"`
			`)`

			`token = auth_header.split(" ")[1]`
			`await AuthService.logout_user(token, db)`

			`# Record successful logout`
			`if metrics:`
			`metrics.increment_counter("logout_total", labels={"status": "success"})`

			`return {"message": "Logged out successfully"}`

			`except HTTPException as e:`
			`# Record failed logout`
			`if metrics:`
			`metrics.increment_counter("logout_total", labels={"status": "failed"})`
			`raise`

Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`except Exception as e:`
Fix shared issues 2025-07-18 12:34:28 +02:00			`# Record logout error`
			`if metrics:`
			`metrics.increment_counter("logout_total", labels={"status": "error"})`
Initial microservices setup from artifacts 2025-07-17 13:09:24 +02:00			`logger.error(f"Logout error: {e}")`
			`raise HTTPException(`
			`status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,`
			`detail="Logout failed"`
Fix shared issues 2025-07-18 12:34:28 +02:00			`)`