romfast/roaauto
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9db4e746e34a5c8381a7f14ac7db9cdf615b929c
roaauto/backend/app/users/router.py
Marius Mutu 8c0346e41f feat(backend): invite system + user management 
- InviteToken model with unique token for each invite
- POST /users/invite - create invite by email with role (admin/mecanic)
- POST /auth/accept-invite - accept invite, set password, return JWT
- GET /users - list all users in tenant
- DELETE /users/{id} - deactivate user (cannot deactivate owner)
- Alembic migration for invites table
- 25 passing tests (auth + sync + orders + pdf + portal + invoices + users)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-13 17:37:06 +02:00

44 lines
1.2 KiB
Python
Raw Blame History

from fastapi import APIRouter, Depends, HTTPException
from sqlalchemy.ext.asyncio import AsyncSession
from app.db.session import get_db
from app.deps import get_current_user, get_tenant_id
from app.users import schemas, service
router = APIRouter()
@router.get("")
async def list_users(
tenant_id: str = Depends(get_tenant_id),
db: AsyncSession = Depends(get_db),
):
return await service.list_users(db, tenant_id)
@router.post("/invite")
async def invite_user(
data: schemas.InviteRequest,
current_user: dict = Depends(get_current_user),
tenant_id: str = Depends(get_tenant_id),
db: AsyncSession = Depends(get_db),
):
try:
invite = await service.invite_user(db, tenant_id, data.email, data.rol)
return {"token": invite.token, "email": invite.email}
except ValueError as e:
raise HTTPException(status_code=422, detail=str(e))
@router.delete("/{user_id}")
async def delete_user(
user_id: str,
tenant_id: str = Depends(get_tenant_id),
db: AsyncSession = Depends(get_db),
):
try:
await service.deactivate_user(db, tenant_id, user_id)
return {"ok": True}
except ValueError as e:
raise HTTPException(status_code=422, detail=str(e))
Reference in New Issue View Git Blame Copy Permalink