Add user delete process

services/orders/app/api/orders.py

@@ -9,6 +9,7 @@ from datetime import date
 from typing import List, Optional
 from uuid import UUID
 from fastapi import APIRouter, Depends, HTTPException, Path, Query, status
+from sqlalchemy.ext.asyncio import AsyncSession
 import structlog
 
 from shared.auth.decorators import get_current_user_dep
@@ -307,3 +308,98 @@ async def delete_order(
             status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
             detail="Failed to delete order"
         )
+
+
+# ===== Tenant Data Deletion Endpoint =====
+
+@router.delete(
+    route_builder.build_base_route("tenant/{tenant_id}", include_tenant_prefix=False),
+    status_code=status.HTTP_200_OK
+)
+async def delete_tenant_data(
+    tenant_id: str = Path(..., description="Tenant ID"),
+    current_user: dict = Depends(get_current_user_dep),
+    db: AsyncSession = Depends(get_db)
+):
+    """
+    Delete all order-related data for a tenant
+    Only accessible by internal services (called during tenant deletion)
+    """
+
+    logger.info("Tenant data deletion request received",
+               tenant_id=tenant_id,
+               requesting_service=current_user.get("service", "unknown"))
+
+    # Only allow internal service calls
+    if current_user.get("type") != "service":
+        raise HTTPException(
+            status_code=status.HTTP_403_FORBIDDEN,
+            detail="This endpoint is only accessible to internal services"
+        )
+
+    try:
+        from app.services.tenant_deletion_service import OrdersTenantDeletionService
+
+        deletion_service = OrdersTenantDeletionService(db)
+        result = await deletion_service.safe_delete_tenant_data(tenant_id)
+
+        return {
+            "message": "Tenant data deletion completed in orders-service",
+            "summary": result.to_dict()
+        }
+
+    except Exception as e:
+        logger.error("Tenant data deletion failed",
+                    tenant_id=tenant_id,
+                    error=str(e))
+        raise HTTPException(
+            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
+            detail=f"Failed to delete tenant data: {str(e)}"
+        )
+
+
+@router.get(
+    route_builder.build_base_route("tenant/{tenant_id}/deletion-preview", include_tenant_prefix=False),
+    status_code=status.HTTP_200_OK
+)
+async def preview_tenant_data_deletion(
+    tenant_id: str = Path(..., description="Tenant ID"),
+    current_user: dict = Depends(get_current_user_dep),
+    db: AsyncSession = Depends(get_db)
+):
+    """
+    Preview what data would be deleted for a tenant (dry-run)
+    Accessible by internal services and tenant admins
+    """
+
+    # Allow internal services and admins
+    is_service = current_user.get("type") == "service"
+    is_admin = current_user.get("role") in ["owner", "admin"]
+
+    if not (is_service or is_admin):
+        raise HTTPException(
+            status_code=status.HTTP_403_FORBIDDEN,
+            detail="Insufficient permissions"
+        )
+
+    try:
+        from app.services.tenant_deletion_service import OrdersTenantDeletionService
+
+        deletion_service = OrdersTenantDeletionService(db)
+        preview = await deletion_service.get_tenant_data_preview(tenant_id)
+
+        return {
+            "tenant_id": tenant_id,
+            "service": "orders-service",
+            "data_counts": preview,
+            "total_items": sum(preview.values())
+        }
+
+    except Exception as e:
+        logger.error("Deletion preview failed",
+                    tenant_id=tenant_id,
+                    error=str(e))
+        raise HTTPException(
+            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
+            detail=f"Failed to get deletion preview: {str(e)}"
+        )