feat: iam rbac system

Endpoints and db architecture to support a role based IAM system.
2026-05-25 09:05:17 +01:00 · 2026-05-25 09:05:17 +01:00 · 23f2ce98d7
commit 23f2ce98d7
parent 7b3ee9d5fa
31 changed files with 634 additions and 317 deletions
--- a/src/service/router.py
+++ b/src/service/router.py
@ -0,0 +1,63 @@
+"""
+Router endpoints for <this module>
+
+Endpoints:
+ - List: Description
+ - Endpoints: Description
+"""
+from fastapi import APIRouter
+
+from src.database import db_dependency
+
+from src.service.models import Service
+from src.service.utils import generate_api_key
+
+
+router = APIRouter(
+	tags=["Service"],
+	prefix="/service",
+)
+
+@router.get("/")
+async def get_all_services(db: db_dependency):
+	# TODO: user_dependency
+	# TODO: request model
+	permission_models = db.query(Service).all()
+
+	# TODO: Response model
+	return permission_models
+
+@router.post("/")
+async def register_service(db: db_dependency, service_name: str):
+	# TODO: super_admin_dependency
+	# TODO: request model
+	key = generate_api_key()
+	service_model = Service(name=service_name, api_key=key)
+
+	db.add(service_model)
+	db.commit()
+	# TODO: response model
+
+@router.patch("/{service_id}/key")
+async def regenerate_api_key(db: db_dependency, service_id: int):
+	# TODO: super_admin_dependency
+	# TODO: request model
+	key = generate_api_key()
+	service_model = db.query(Service).filter(Service.id==service_id).first()
+	service_model.api_key = key
+
+	db.add(service_model)
+	db.commit()
+	# TODO: response model
+
+@router.delete("/{service_id}")
+async def remove_service(db: db_dependency, service_id: int):
+	# TODO: super_admin_dependency
+	# TODO: request model
+	service_model = db.query(Service).filter(Service.id==service_id).first()
+	if service_model is None:
+		return
+
+	db.delete(service_model)
+	db.commit()
+	# TODO: response model