Add subcription level filtering

2025-09-21 13:27:50 +02:00
parent 29065f5337
commit e1b3184413
21 changed files with 1137 additions and 122 deletions
--- a/gateway/app/main.py
+++ b/gateway/app/main.py
@@ -18,7 +18,8 @@ from app.core.service_discovery import ServiceDiscovery
 from app.middleware.auth import AuthMiddleware
 from app.middleware.logging import LoggingMiddleware
 from app.middleware.rate_limit import RateLimitMiddleware
-from app.routes import auth, tenant, notification, nominatim, user
+from app.middleware.subscription import SubscriptionMiddleware
+from app.routes import auth, tenant, notification, nominatim, user, subscription
 from shared.monitoring.logging import setup_logging
 from shared.monitoring.metrics import MetricsCollector

@@ -56,12 +57,14 @@ app.add_middleware(
 # Custom middleware - Add in correct order (outer to inner)
 app.add_middleware(LoggingMiddleware)
 app.add_middleware(RateLimitMiddleware, calls_per_minute=300)
+app.add_middleware(SubscriptionMiddleware, tenant_service_url=settings.TENANT_SERVICE_URL)
 app.add_middleware(AuthMiddleware)

 # Include routers
 app.include_router(auth.router, prefix="/api/v1/auth", tags=["authentication"])
 app.include_router(user.router, prefix="/api/v1/users", tags=["users"])
 app.include_router(tenant.router, prefix="/api/v1/tenants", tags=["tenants"])
+app.include_router(subscription.router, prefix="/api/v1", tags=["subscriptions"])
 app.include_router(notification.router, prefix="/api/v1/notifications", tags=["notifications"])
 app.include_router(nominatim.router, prefix="/api/v1/nominatim", tags=["location"])

--- a/gateway/app/middleware/subscription.py
+++ b/gateway/app/middleware/subscription.py
@@ -0,0 +1,298 @@
+"""
+Subscription Middleware - Enforces subscription limits and feature access
+"""
+
+import re
+import json
+import structlog
+from fastapi import Request, Response, HTTPException
+from fastapi.responses import JSONResponse
+from starlette.middleware.base import BaseHTTPMiddleware
+import httpx
+from typing import Dict, Any, Optional
+import asyncio
+
+from app.core.config import settings
+
+logger = structlog.get_logger()
+
+
+class SubscriptionMiddleware(BaseHTTPMiddleware):
+    """Middleware to enforce subscription-based access control"""
+
+    def __init__(self, app, tenant_service_url: str):
+        super().__init__(app)
+        self.tenant_service_url = tenant_service_url.rstrip('/')
+
+        # Define route patterns that require subscription validation
+        self.protected_routes = {
+            # Analytics routes - require different levels based on actual app routes
+            r'/api/v1/tenants/[^/]+/analytics/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'  # General analytics require Professional+
+            },
+            r'/api/v1/tenants/[^/]+/forecasts/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'  # Forecasting requires Professional+
+            },
+            r'/api/v1/tenants/[^/]+/predictions/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'  # Predictions require Professional+
+            },
+            # Training and AI models - Professional+
+            r'/api/v1/tenants/[^/]+/training/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'
+            },
+            r'/api/v1/tenants/[^/]+/models/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'
+            },
+            # Advanced production features - Professional+
+            r'/api/v1/tenants/[^/]+/production/optimization/.*': {
+                'feature': 'analytics',
+                'minimum_level': 'advanced'
+            },
+            # Enterprise-only features
+            r'/api/v1/tenants/[^/]+/statistics.*': {
+                'feature': 'analytics',
+                'minimum_level': 'predictive'  # Advanced stats for Enterprise only
+            }
+        }
+
+    async def dispatch(self, request: Request, call_next):
+        """Process the request and check subscription requirements"""
+
+        # Skip subscription check for certain routes
+        if self._should_skip_subscription_check(request):
+            return await call_next(request)
+
+        # Check if route requires subscription validation
+        subscription_requirement = self._get_subscription_requirement(request.url.path)
+        if not subscription_requirement:
+            return await call_next(request)
+
+        # Get tenant ID from request
+        tenant_id = self._extract_tenant_id(request)
+        if not tenant_id:
+            return JSONResponse(
+                status_code=400,
+                content={
+                    "error": "subscription_validation_failed",
+                    "message": "Tenant ID required for subscription validation",
+                    "code": "MISSING_TENANT_ID"
+                }
+            )
+
+        # Validate subscription
+        validation_result = await self._validate_subscription(
+            request,
+            tenant_id,
+            subscription_requirement['feature'],
+            subscription_requirement['minimum_level']
+        )
+
+        if not validation_result['allowed']:
+            return JSONResponse(
+                status_code=403,
+                content={
+                    "error": "subscription_required",
+                    "message": validation_result['message'],
+                    "code": "SUBSCRIPTION_UPGRADE_REQUIRED",
+                    "details": {
+                        "required_feature": subscription_requirement['feature'],
+                        "required_level": subscription_requirement['minimum_level'],
+                        "current_plan": validation_result.get('current_plan', 'unknown'),
+                        "upgrade_url": "/app/settings/profile"
+                    }
+                }
+            )
+
+        # Subscription validation passed, continue with request
+        response = await call_next(request)
+        return response
+
+    def _should_skip_subscription_check(self, request: Request) -> bool:
+        """Check if subscription validation should be skipped"""
+        path = request.url.path
+        method = request.method
+
+        # Skip for health checks, auth, and public routes
+        skip_patterns = [
+            r'/health.*',
+            r'/metrics.*',
+            r'/api/v1/auth/.*',
+            r'/api/v1/subscriptions/.*',  # Subscription management itself
+            r'/api/v1/tenants/[^/]+/members.*',  # Basic tenant info
+            r'/docs.*',
+            r'/openapi\.json'
+        ]
+
+        # Skip OPTIONS requests (CORS preflight)
+        if method == "OPTIONS":
+            return True
+
+        for pattern in skip_patterns:
+            if re.match(pattern, path):
+                return True
+
+        return False
+
+    def _get_subscription_requirement(self, path: str) -> Optional[Dict[str, str]]:
+        """Get subscription requirement for a given path"""
+        for pattern, requirement in self.protected_routes.items():
+            if re.match(pattern, path):
+                return requirement
+        return None
+
+    def _extract_tenant_id(self, request: Request) -> Optional[str]:
+        """Extract tenant ID from request"""
+        # Try to get from URL path first
+        path_match = re.search(r'/api/v1/tenants/([^/]+)/', request.url.path)
+        if path_match:
+            return path_match.group(1)
+
+        # Try to get from headers
+        tenant_id = request.headers.get('x-tenant-id')
+        if tenant_id:
+            return tenant_id
+
+        # Try to get from user state (set by auth middleware)
+        if hasattr(request.state, 'user') and request.state.user:
+            return request.state.user.get('tenant_id')
+
+        return None
+
+    async def _validate_subscription(
+        self,
+        request: Request,
+        tenant_id: str,
+        feature: str,
+        minimum_level: str
+    ) -> Dict[str, Any]:
+        """Validate subscription feature access using the same pattern as other gateway services"""
+        try:
+            # Use the same authentication pattern as gateway routes
+            headers = dict(request.headers)
+            headers.pop("host", None)
+
+            # Add user context headers if available (same as _proxy_request)
+            if hasattr(request.state, 'user') and request.state.user:
+                user = request.state.user
+                headers["x-user-id"] = str(user.get('user_id', ''))
+                headers["x-user-email"] = str(user.get('email', ''))
+                headers["x-user-role"] = str(user.get('role', 'user'))
+                headers["x-user-full-name"] = str(user.get('full_name', ''))
+                headers["x-tenant-id"] = str(user.get('tenant_id', ''))
+
+            # Call tenant service to check subscription with gateway-appropriate timeout
+            timeout_config = httpx.Timeout(
+                connect=2.0,    # Connection timeout - short for gateway
+                read=10.0,      # Read timeout
+                write=2.0,      # Write timeout
+                pool=2.0        # Pool timeout
+            )
+            
+            async with httpx.AsyncClient(timeout=timeout_config) as client:
+                # Check feature access
+                feature_response = await client.get(
+                    f"{settings.TENANT_SERVICE_URL}/api/v1/subscriptions/{tenant_id}/features/{feature}",
+                    headers=headers
+                )
+
+                if feature_response.status_code != 200:
+                    logger.warning(
+                        "Failed to check feature access",
+                        tenant_id=tenant_id,
+                        feature=feature,
+                        status_code=feature_response.status_code,
+                        response_text=feature_response.text,
+                        url=f"{settings.TENANT_SERVICE_URL}/api/v1/subscriptions/{tenant_id}/features/{feature}"
+                    )
+                    # Fail open for availability (let service handle detailed check if needed)
+                    return {
+                        'allowed': True,
+                        'message': 'Access granted (validation service unavailable)',
+                        'current_plan': 'unknown'
+                    }
+
+                feature_data = feature_response.json()
+                logger.info("Feature check response",
+                           tenant_id=tenant_id,
+                           feature=feature,
+                           response=feature_data)
+
+                if not feature_data.get('has_feature'):
+                    return {
+                        'allowed': False,
+                        'message': f'Feature "{feature}" not available in your current plan',
+                        'current_plan': feature_data.get('plan', 'unknown')
+                    }
+
+                # Check feature level if it's analytics
+                if feature == 'analytics':
+                    feature_level = feature_data.get('feature_value', 'basic')
+                    if not self._check_analytics_level(feature_level, minimum_level):
+                        return {
+                            'allowed': False,
+                            'message': f'Analytics level "{minimum_level}" required. Current level: "{feature_level}"',
+                            'current_plan': feature_data.get('plan', 'unknown')
+                        }
+
+                return {
+                    'allowed': True,
+                    'message': 'Access granted',
+                    'current_plan': feature_data.get('plan', 'unknown')
+                }
+
+        except asyncio.TimeoutError:
+            logger.error(
+                "Timeout validating subscription",
+                tenant_id=tenant_id,
+                feature=feature
+            )
+            # Fail open for availability (let service handle detailed check)
+            return {
+                'allowed': True,
+                'message': 'Access granted (validation timeout)',
+                'current_plan': 'unknown'
+            }
+        except httpx.RequestError as e:
+            logger.error(
+                "Request error validating subscription",
+                tenant_id=tenant_id,
+                feature=feature,
+                error=str(e)
+            )
+            # Fail open for availability
+            return {
+                'allowed': True,
+                'message': 'Access granted (validation service unavailable)',
+                'current_plan': 'unknown'
+            }
+        except Exception as e:
+            logger.error(
+                "Subscription validation error",
+                tenant_id=tenant_id,
+                feature=feature,
+                error=str(e)
+            )
+            # Fail open for availability (let service handle detailed check)
+            return {
+                'allowed': True,
+                'message': 'Access granted (validation error)',
+                'current_plan': 'unknown'
+            }
+
+    def _check_analytics_level(self, current_level: str, required_level: str) -> bool:
+        """Check if current analytics level meets the requirement"""
+        level_hierarchy = {
+            'basic': 1,
+            'advanced': 2,
+            'predictive': 3
+        }
+
+        current_rank = level_hierarchy.get(current_level, 0)
+        required_rank = level_hierarchy.get(required_level, 0)
+
+        return current_rank >= required_rank
--- a/gateway/app/routes/subscription.py
+++ b/gateway/app/routes/subscription.py
@@ -0,0 +1,118 @@
+"""
+Subscription routes for API Gateway - Direct subscription endpoints
+"""
+
+from fastapi import APIRouter, Request, Response, HTTPException, Path
+from fastapi.responses import JSONResponse
+import httpx
+import logging
+from typing import Optional
+
+from app.core.config import settings
+
+logger = logging.getLogger(__name__)
+router = APIRouter()
+
+# ================================================================
+# SUBSCRIPTION ENDPOINTS - Direct routing to tenant service
+# ================================================================
+
+@router.api_route("/subscriptions/{tenant_id}/{path:path}", methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"])
+async def proxy_subscription_endpoints(request: Request, tenant_id: str = Path(...), path: str = ""):
+    """Proxy subscription requests directly to tenant service"""
+    target_path = f"/api/v1/subscriptions/{tenant_id}/{path}".rstrip("/")
+    return await _proxy_to_tenant_service(request, target_path)
+
+@router.api_route("/subscriptions/plans", methods=["GET", "OPTIONS"])
+async def proxy_subscription_plans(request: Request):
+    """Proxy subscription plans request to tenant service"""
+    target_path = "/api/v1/plans/available"
+    return await _proxy_to_tenant_service(request, target_path)
+
+# ================================================================
+# PROXY HELPER FUNCTIONS
+# ================================================================
+
+async def _proxy_to_tenant_service(request: Request, target_path: str):
+    """Proxy request to tenant service"""
+    return await _proxy_request(request, target_path, settings.TENANT_SERVICE_URL)
+
+async def _proxy_request(request: Request, target_path: str, service_url: str):
+    """Generic proxy function with enhanced error handling"""
+
+    # Handle OPTIONS requests directly for CORS
+    if request.method == "OPTIONS":
+        return Response(
+            status_code=200,
+            headers={
+                "Access-Control-Allow-Origin": settings.CORS_ORIGINS_LIST,
+                "Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
+                "Access-Control-Allow-Headers": "Content-Type, Authorization, X-Tenant-ID",
+                "Access-Control-Allow-Credentials": "true",
+                "Access-Control-Max-Age": "86400"
+            }
+        )
+
+    try:
+        url = f"{service_url}{target_path}"
+
+        # Forward headers and add user/tenant context
+        headers = dict(request.headers)
+        headers.pop("host", None)
+
+        # Add user context headers if available
+        if hasattr(request.state, 'user') and request.state.user:
+            user = request.state.user
+            headers["x-user-id"] = str(user.get('user_id', ''))
+            headers["x-user-email"] = str(user.get('email', ''))
+            headers["x-user-role"] = str(user.get('role', 'user'))
+            headers["x-user-full-name"] = str(user.get('full_name', ''))
+            headers["x-tenant-id"] = str(user.get('tenant_id', ''))
+            logger.info(f"Forwarding subscription request to {url} with user context: user_id={user.get('user_id')}, email={user.get('email')}")
+        else:
+            logger.warning(f"No user context available when forwarding subscription request to {url}")
+
+        # Get request body if present
+        body = None
+        if request.method in ["POST", "PUT", "PATCH"]:
+            body = await request.body()
+
+        # Add query parameters
+        params = dict(request.query_params)
+
+        timeout_config = httpx.Timeout(
+            connect=30.0,
+            read=60.0,
+            write=30.0,
+            pool=30.0
+        )
+
+        async with httpx.AsyncClient(timeout=timeout_config) as client:
+            response = await client.request(
+                method=request.method,
+                url=url,
+                headers=headers,
+                content=body,
+                params=params
+            )
+
+            # Handle different response types
+            if response.headers.get("content-type", "").startswith("application/json"):
+                try:
+                    content = response.json()
+                except:
+                    content = {"message": "Invalid JSON response from service"}
+            else:
+                content = response.text
+
+            return JSONResponse(
+                status_code=response.status_code,
+                content=content
+            )
+
+    except Exception as e:
+        logger.error(f"Unexpected error proxying subscription request to {service_url}{target_path}: {e}")
+        raise HTTPException(
+            status_code=500,
+            detail="Internal gateway error"
+        )
--- a/gateway/app/routes/tenant.py
+++ b/gateway/app/routes/tenant.py
@@ -53,6 +53,22 @@ async def delete_user_tenants(request: Request, user_id: str = Path(...)):
    """Get all tenant memberships for a user (admin only)"""
    return await _proxy_to_tenant_service(request, f"/api/v1/tenants/user/{user_id}/memberships")

+# ================================================================
+# TENANT SUBSCRIPTION ENDPOINTS
+# ================================================================
+
+@router.api_route("/{tenant_id}/subscriptions/{path:path}", methods=["GET", "POST", "PUT", "DELETE", "OPTIONS"])
+async def proxy_tenant_subscriptions(request: Request, tenant_id: str = Path(...), path: str = ""):
+    """Proxy tenant subscription requests to tenant service"""
+    target_path = f"/api/v1/subscriptions/{tenant_id}/{path}".rstrip("/")
+    return await _proxy_to_tenant_service(request, target_path)
+
+@router.api_route("/subscriptions/plans", methods=["GET", "OPTIONS"])
+async def proxy_available_plans(request: Request):
+    """Proxy available plans request to tenant service"""
+    target_path = "/api/v1/plans/available"
+    return await _proxy_to_tenant_service(request, target_path)
+
 # ================================================================
 # TENANT-SCOPED DATA SERVICE ENDPOINTS
 # ================================================================