Add user delete process

2025-10-31 11:54:19 +01:00
parent 63f5c6d512
commit 269d3b5032
74 changed files with 16783 additions and 213 deletions
--- a/services/pos/app/api/pos_operations.py
+++ b/services/pos/app/api/pos_operations.py
@@ -12,10 +12,11 @@ import json

 from app.core.database import get_db
 from shared.auth.decorators import get_current_user_dep
-from shared.auth.access_control import require_user_role, admin_role_required
+from shared.auth.access_control import require_user_role, admin_role_required, service_only_access
 from shared.routing import RouteBuilder
 from app.services.pos_transaction_service import POSTransactionService
 from app.services.pos_config_service import POSConfigurationService
+from app.services.tenant_deletion_service import POSTenantDeletionService

 router = APIRouter()
 logger = structlog.get_logger()
@@ -385,3 +386,112 @@ def _get_supported_events(pos_system: str) -> Dict[str, Any]:
        "format": "JSON",
        "authentication": "signature_verification"
    }
+
+
+# ============================================================================
+# Tenant Data Deletion Operations (Internal Service Only)
+# ============================================================================
+
+@router.delete(
+    route_builder.build_base_route("tenant/{tenant_id}", include_tenant_prefix=False),
+    response_model=dict
+)
+@service_only_access
+async def delete_tenant_data(
+    tenant_id: str = Path(..., description="Tenant ID to delete data for"),
+    current_user: dict = Depends(get_current_user_dep),
+    db=Depends(get_db)
+):
+    """
+    Delete all POS data for a tenant (Internal service only)
+
+    This endpoint is called by the orchestrator during tenant deletion.
+    It permanently deletes all POS-related data including:
+    - POS configurations
+    - POS transactions and items
+    - Webhook logs
+    - Sync logs
+    - Audit logs
+
+    **WARNING**: This operation is irreversible!
+
+    Returns:
+        Deletion summary with counts of deleted records
+    """
+    try:
+        logger.info("pos.tenant_deletion.api_called", tenant_id=tenant_id)
+
+        deletion_service = POSTenantDeletionService(db)
+        result = await deletion_service.safe_delete_tenant_data(tenant_id)
+
+        if not result.success:
+            raise HTTPException(
+                status_code=500,
+                detail=f"Tenant data deletion failed: {', '.join(result.errors)}"
+            )
+
+        return {
+            "message": "Tenant data deletion completed successfully",
+            "summary": result.to_dict()
+        }
+
+    except HTTPException:
+        raise
+    except Exception as e:
+        logger.error("pos.tenant_deletion.api_error",
+                    tenant_id=tenant_id,
+                    error=str(e),
+                    exc_info=True)
+        raise HTTPException(
+            status_code=500,
+            detail=f"Failed to delete tenant data: {str(e)}"
+        )
+
+
+@router.get(
+    route_builder.build_base_route("tenant/{tenant_id}/deletion-preview", include_tenant_prefix=False),
+    response_model=dict
+)
+@service_only_access
+async def preview_tenant_data_deletion(
+    tenant_id: str = Path(..., description="Tenant ID to preview deletion for"),
+    current_user: dict = Depends(get_current_user_dep),
+    db=Depends(get_db)
+):
+    """
+    Preview what data would be deleted for a tenant (dry-run)
+
+    This endpoint shows counts of all data that would be deleted
+    without actually deleting anything. Useful for:
+    - Confirming deletion scope before execution
+    - Auditing and compliance
+    - Troubleshooting
+
+    Returns:
+        Dictionary with entity names and their counts
+    """
+    try:
+        logger.info("pos.tenant_deletion.preview_called", tenant_id=tenant_id)
+
+        deletion_service = POSTenantDeletionService(db)
+        preview = await deletion_service.get_tenant_data_preview(tenant_id)
+
+        total_records = sum(preview.values())
+
+        return {
+            "tenant_id": tenant_id,
+            "service": "pos",
+            "preview": preview,
+            "total_records": total_records,
+            "warning": "These records will be permanently deleted and cannot be recovered"
+        }
+
+    except Exception as e:
+        logger.error("pos.tenant_deletion.preview_error",
+                    tenant_id=tenant_id,
+                    error=str(e),
+                    exc_info=True)
+        raise HTTPException(
+            status_code=500,
+            detail=f"Failed to preview tenant data deletion: {str(e)}"
+        )