Add role-based filtering and imporve code

2025-10-15 16:12:49 +02:00
parent 96ad5c6692
commit 8f9e9a7edc
158 changed files with 11033 additions and 1544 deletions
--- a/services/tenant/app/api/tenants.py
+++ b/services/tenant/app/api/tenants.py
@@ -11,6 +11,7 @@ from uuid import UUID
 from app.schemas.tenants import TenantResponse, TenantUpdate
 from app.services.tenant_service import EnhancedTenantService
 from shared.auth.decorators import get_current_user_dep
+from shared.auth.access_control import admin_role_required
 from shared.routing.route_builder import RouteBuilder
 from shared.database.base import create_database_manager
 from shared.monitoring.metrics import track_endpoint_metrics
@@ -48,13 +49,14 @@ async def get_tenant(
    return tenant

@router.put(route_builder.build_base_route("{tenant_id}", include_tenant_prefix=False), response_model=TenantResponse)
+@admin_role_required
 async def update_tenant(
    update_data: TenantUpdate,
    tenant_id: UUID = Path(..., description="Tenant ID"),
    current_user: Dict[str, Any] = Depends(get_current_user_dep),
    tenant_service: EnhancedTenantService = Depends(get_enhanced_tenant_service)
 ):
-    """Update tenant information - ATOMIC operation"""
+    """Update tenant information - ATOMIC operation (Admin+ only)"""

    try:
        result = await tenant_service.update_tenant(