Add role-based filtering and imporve code

services/sales/app/api/analytics.py

@@ -11,6 +11,7 @@ import structlog
 
 from app.services.sales_service import SalesService
 from shared.routing import RouteBuilder
+from shared.auth.access_control import analytics_tier_required
 
 route_builder = RouteBuilder('sales')
 router = APIRouter(tags=["sales-analytics"])
@@ -25,13 +26,14 @@ def get_sales_service():
 @router.get(
     route_builder.build_analytics_route("summary")
 )
+@analytics_tier_required
 async def get_sales_analytics(
     tenant_id: UUID = Path(..., description="Tenant ID"),
     start_date: Optional[datetime] = Query(None, description="Start date filter"),
     end_date: Optional[datetime] = Query(None, description="End date filter"),
     sales_service: SalesService = Depends(get_sales_service)
 ):
-    """Get sales analytics summary for a tenant"""
+    """Get sales analytics summary for a tenant (Professional+ tier required)"""
     try:
         analytics = await sales_service.get_sales_analytics(tenant_id, start_date, end_date)