Add improvements

services/orders/app/api/internal_demo.py

@@ -29,14 +29,6 @@ router = APIRouter(prefix="/internal/demo", tags=["internal"])
 DEMO_TENANT_PROFESSIONAL = "a1b2c3d4-e5f6-47a8-b9c0-d1e2f3a4b5c6"
 
 
-def verify_internal_api_key(x_internal_api_key: Optional[str] = Header(None)):
-    """Verify internal API key for service-to-service communication"""
-    if x_internal_api_key != settings.INTERNAL_API_KEY:
-        logger.warning("Unauthorized internal API access attempted")
-        raise HTTPException(status_code=403, detail="Invalid internal API key")
-    return True
-
-
 def parse_date_field(date_value, session_time: datetime, field_name: str = "date") -> Optional[datetime]:
     """
     Parse date field, handling both ISO strings and BASE_TS markers.
@@ -97,8 +89,7 @@ async def clone_demo_data(
     demo_account_type: str,
     session_id: Optional[str] = None,
     session_created_at: Optional[str] = None,
-    db: AsyncSession = Depends(get_db),
-    _: bool = Depends(verify_internal_api_key)
+    db: AsyncSession = Depends(get_db)
 ):
     """
     Clone orders service data for a virtual demo tenant
@@ -406,7 +397,7 @@ async def clone_demo_data(
 
 
 @router.get("/clone/health")
-async def clone_health_check(_: bool = Depends(verify_internal_api_key)):
+async def clone_health_check():
     """
     Health check for internal cloning endpoint
     Used by orchestrator to verify service availability
@@ -421,8 +412,7 @@ async def clone_health_check(_: bool = Depends(verify_internal_api_key)):
 @router.delete("/tenant/{virtual_tenant_id}")
 async def delete_demo_data(
     virtual_tenant_id: str,
-    db: AsyncSession = Depends(get_db),
-    _: bool = Depends(verify_internal_api_key)
+    db: AsyncSession = Depends(get_db)
 ):
     """Delete all order data for a virtual demo tenant"""
     logger.info("Deleting order data for virtual tenant", virtual_tenant_id=virtual_tenant_id)