Add user delete process

2025-10-31 11:54:19 +01:00
parent 63f5c6d512
commit 269d3b5032
74 changed files with 16783 additions and 213 deletions
--- a/services/recipes/app/api/recipes.py
+++ b/services/recipes/app/api/recipes.py
@@ -390,3 +390,86 @@ async def get_recipe_deletion_summary(
    except Exception as e:
        logger.error(f"Error getting deletion summary: {e}")
        raise HTTPException(status_code=500, detail="Internal server error")
+
+
+# ===== Tenant Data Deletion Endpoints =====
+
+@router.delete("/tenant/{tenant_id}")
+async def delete_tenant_data(
+    tenant_id: str,
+    current_user: dict = Depends(get_current_user_dep),
+    db: AsyncSession = Depends(get_db)
+):
+    """
+    Delete all recipe-related data for a tenant
+    Only accessible by internal services (called during tenant deletion)
+    """
+
+    logger.info(f"Tenant data deletion request received for tenant: {tenant_id}")
+
+    # Only allow internal service calls
+    if current_user.get("type") != "service":
+        raise HTTPException(
+            status_code=403,
+            detail="This endpoint is only accessible to internal services"
+        )
+
+    try:
+        from app.services.tenant_deletion_service import RecipesTenantDeletionService
+
+        deletion_service = RecipesTenantDeletionService(db)
+        result = await deletion_service.safe_delete_tenant_data(tenant_id)
+
+        return {
+            "message": "Tenant data deletion completed in recipes-service",
+            "summary": result.to_dict()
+        }
+
+    except Exception as e:
+        logger.error(f"Tenant data deletion failed for {tenant_id}: {e}")
+        raise HTTPException(
+            status_code=500,
+            detail=f"Failed to delete tenant data: {str(e)}"
+        )
+
+
+@router.get("/tenant/{tenant_id}/deletion-preview")
+async def preview_tenant_data_deletion(
+    tenant_id: str,
+    current_user: dict = Depends(get_current_user_dep),
+    db: AsyncSession = Depends(get_db)
+):
+    """
+    Preview what data would be deleted for a tenant (dry-run)
+    Accessible by internal services and tenant admins
+    """
+
+    # Allow internal services and admins
+    is_service = current_user.get("type") == "service"
+    is_admin = current_user.get("role") in ["owner", "admin"]
+
+    if not (is_service or is_admin):
+        raise HTTPException(
+            status_code=403,
+            detail="Insufficient permissions"
+        )
+
+    try:
+        from app.services.tenant_deletion_service import RecipesTenantDeletionService
+
+        deletion_service = RecipesTenantDeletionService(db)
+        preview = await deletion_service.get_tenant_data_preview(tenant_id)
+
+        return {
+            "tenant_id": tenant_id,
+            "service": "recipes-service",
+            "data_counts": preview,
+            "total_items": sum(preview.values())
+        }
+
+    except Exception as e:
+        logger.error(f"Deletion preview failed for {tenant_id}: {e}")
+        raise HTTPException(
+            status_code=500,
+            detail=f"Failed to get deletion preview: {str(e)}"
+        )