cloud-api/src/user/router.py

"""
Router endpoints for user module

Endpoints:
 - [get]/self/claims - Retrieves user's OIDC claims
 - [get]/self/db - Retrieves the user data from the db that corresponds to the current OIDC user
 - [get]/self/orgs - Retrieves all organisations associated with the current user
 - [get]/self/orgs/admin - Retrieves only admin organisations for the current user
 - [get]/{user_id} - Retrieves a specific user by their ID
 - [get]/{user_id}/orgs - Retrieves all organisations associated with a specific user
 - [get]/{user_id}/orgs/admin - Retrieves only admin organisations for a specific user
 - [delete]/{user_id} - Deletes a user from the db by their db ID
"""
from typing import Annotated

from fastapi import APIRouter
from fastapi.params import Path
from starlette import status

from src.user.models import User
from src.user.schemas import UserResponse, OIDCClaims
from src.user.exceptions import UserNotFoundException

from src.auth.service import claims_dependency
from src.database import db_dependency

router = APIRouter(
	prefix="/user",
	tags=["User"],
)


@router.get("/self/claims", response_model=OIDCClaims, status_code=status.HTTP_200_OK, responses={
	status.HTTP_200_OK: {"description": "Successful retrieval from database"},
})
async def current_user_claims(user: claims_dependency):
	"""
	Returns the full OIDC claims associated with the currently logged-in user.
	"""
	user["allowed_origins"] = user.get("allowed-origins", [])
	return user


@router.get("/self/db", response_model=UserResponse, status_code=status.HTTP_200_OK, responses={
	status.HTTP_404_NOT_FOUND: {"description": "User not found"},
	status.HTTP_200_OK: {"description": "Successful retrieval from database"},
})
async def current_user(user: claims_dependency, db: db_dependency):
	"""
	Returns the database details associated with the currently logged-in user.
	"""
	user_id = user.get("db_id", None)
	if user_id is None:
		raise UserNotFoundException()

	user_model = (db.query(User).filter(User.id == user_id).first())
	if user_model is None:
		raise UserNotFoundException(user_id=user_id)

	return user_model


@router.get("/{user_id}", response_model=UserResponse, status_code=status.HTTP_200_OK, responses={
	status.HTTP_404_NOT_FOUND: {"description": "User not found"},
	status.HTTP_200_OK: {"description": "Successful retrieval from database"},
})
async def get_user_by_id(db: db_dependency, user_id: Annotated[int, Path(gt=0,description="User database ID")]):
	"""
	Returns the database details associated with the provided user ID.
	"""
	user_model = (db.query(User).filter(User.id == user_id).first())
	if user_model is None:
		raise UserNotFoundException(user_id=user_id)

	return user_model


@router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT, responses={
		status.HTTP_204_NO_CONTENT: {"description": "User deleted"},
		status.HTTP_404_NOT_FOUND: {"description": "User not found"},
	})
async def delete_user_by_id(user_id: Annotated[int, Path(gt=0)], db: db_dependency):
	"""
	Deletes the user with the provided ID from the database. This will not remove them from OIDC, and they will be automatically readded on next login.
	"""
	user_model = (db.query(User).filter(User.id == user_id).first())
	if user_model is None:
		raise UserNotFoundException(user_id=user_id)
	db.delete(user_model)
	db.commit()
Initial commit 2026-04-06 12:41:49 +01:00			`"""`
			`Router endpoints for user module`

			`Endpoints:`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`- [get]/self/claims - Retrieves user's OIDC claims`
			`- [get]/self/db - Retrieves the user data from the db that corresponds to the current OIDC user`
			`- [get]/self/orgs - Retrieves all organisations associated with the current user`
			`- [get]/self/orgs/admin - Retrieves only admin organisations for the current user`
Initial commit 2026-04-06 12:41:49 +01:00			`- [get]/{user_id} - Retrieves a specific user by their ID`
			`- [get]/{user_id}/orgs - Retrieves all organisations associated with a specific user`
			`- [get]/{user_id}/orgs/admin - Retrieves only admin organisations for a specific user`
			`- [delete]/{user_id} - Deletes a user from the db by their db ID`
			`"""`
fix: corrected use of path param Previously used `param: int = Path()` this worked but was incorrect. Correct usage is `param: Annotated[int, Path()]` 2026-05-19 11:11:03 +01:00			`from typing import Annotated`

docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`from fastapi import APIRouter`
Initial commit 2026-04-06 12:41:49 +01:00			`from fastapi.params import Path`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`from starlette import status`
Initial commit 2026-04-06 12:41:49 +01:00
			`from src.user.models import User`
feat: condensed user get endpoints The process also added improved ORM relationships for multiple models. 2026-05-25 12:06:24 +01:00			`from src.user.schemas import UserResponse, OIDCClaims`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`from src.user.exceptions import UserNotFoundException`
Initial commit 2026-04-06 12:41:49 +01:00
			`from src.auth.service import claims_dependency`
			`from src.database import db_dependency`

			`router = APIRouter(`
			`prefix="/user",`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`tags=["User"],`
Initial commit 2026-04-06 12:41:49 +01:00			`)`


docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`@router.get("/self/claims", response_model=OIDCClaims, status_code=status.HTTP_200_OK, responses={`
			`status.HTTP_200_OK: {"description": "Successful retrieval from database"},`
			`})`
Initial commit 2026-04-06 12:41:49 +01:00			`async def current_user_claims(user: claims_dependency):`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`"""`
			`Returns the full OIDC claims associated with the currently logged-in user.`
			`"""`
			`user["allowed_origins"] = user.get("allowed-origins", [])`
Initial commit 2026-04-06 12:41:49 +01:00			`return user`


docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`@router.get("/self/db", response_model=UserResponse, status_code=status.HTTP_200_OK, responses={`
			`status.HTTP_404_NOT_FOUND: {"description": "User not found"},`
			`status.HTTP_200_OK: {"description": "Successful retrieval from database"},`
			`})`
Initial commit 2026-04-06 12:41:49 +01:00			`async def current_user(user: claims_dependency, db: db_dependency):`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`"""`
			`Returns the database details associated with the currently logged-in user.`
			`"""`
			`user_id = user.get("db_id", None)`
			`if user_id is None:`
			`raise UserNotFoundException()`
Initial commit 2026-04-06 12:41:49 +01:00
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`user_model = (db.query(User).filter(User.id == user_id).first())`
Initial commit 2026-04-06 12:41:49 +01:00			`if user_model is None:`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`raise UserNotFoundException(user_id=user_id)`
Initial commit 2026-04-06 12:41:49 +01:00
			`return user_model`


docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`@router.get("/{user_id}", response_model=UserResponse, status_code=status.HTTP_200_OK, responses={`
			`status.HTTP_404_NOT_FOUND: {"description": "User not found"},`
			`status.HTTP_200_OK: {"description": "Successful retrieval from database"},`
			`})`
			`async def get_user_by_id(db: db_dependency, user_id: Annotated[int, Path(gt=0,description="User database ID")]):`
			`"""`
			`Returns the database details associated with the provided user ID.`
			`"""`
Initial commit 2026-04-06 12:41:49 +01:00			`user_model = (db.query(User).filter(User.id == user_id).first())`
			`if user_model is None:`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`raise UserNotFoundException(user_id=user_id)`
Initial commit 2026-04-06 12:41:49 +01:00
			`return user_model`


docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`@router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT, responses={`
			`status.HTTP_204_NO_CONTENT: {"description": "User deleted"},`
			`status.HTTP_404_NOT_FOUND: {"description": "User not found"},`
			`})`
			`async def delete_user_by_id(user_id: Annotated[int, Path(gt=0)], db: db_dependency):`
			`"""`
			`Deletes the user with the provided ID from the database. This will not remove them from OIDC, and they will be automatically readded on next login.`
			`"""`
Initial commit 2026-04-06 12:41:49 +01:00			`user_model = (db.query(User).filter(User.id == user_id).first())`
			`if user_model is None:`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`raise UserNotFoundException(user_id=user_id)`
Initial commit 2026-04-06 12:41:49 +01:00			`db.delete(user_model)`
			`db.commit()`