Skip to content

Implement Custom RBAC System #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
google-labs-jules wants to merge 1 commit into
base: master
Choose a base branch
from
Draft

Implement Custom RBAC System #9

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
107 changes: 80 additions & 27 deletions back/app/inventory_routes.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,8 @@
from sqlmodel import Session, select

from .db import get_session
from .security import get_current_user
from .security import get_current_user, PermissionChecker
from .permissions import Permissions
from . import models
from .inventory_models import (
InventoryBatch,
Expand Down Expand Up @@ -66,7 +67,9 @@

@router.get("/items", response_model=list[InventoryItemResponse])
def list_inventory_items(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
category: InventoryCategory | None = None,
active_only: bool = True,
Expand Down Expand Up @@ -122,7 +125,9 @@ def list_inventory_items(
@router.post("/items", response_model=InventoryItemResponse)
def create_inventory_item(
item_create: InventoryItemCreate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Create a new inventory item"""
Expand Down Expand Up @@ -167,7 +172,9 @@ def create_inventory_item(
@router.get("/items/{item_id}", response_model=InventoryItemResponse)
def get_inventory_item(
item_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get a single inventory item with details"""
Expand Down Expand Up @@ -199,7 +206,9 @@ def get_inventory_item(
def update_inventory_item(
item_id: int,
item_update: InventoryItemUpdate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Update an inventory item"""
Expand Down Expand Up @@ -253,7 +262,9 @@ def update_inventory_item(
@router.delete("/items/{item_id}")
def delete_inventory_item(
item_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Soft delete an inventory item"""
Expand All @@ -275,7 +286,9 @@ def delete_inventory_item(
def adjust_inventory_stock(
item_id: int,
adjustment: StockAdjustment,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Manual stock adjustment (add, subtract, or waste)"""
Expand Down Expand Up @@ -321,7 +334,9 @@ def adjust_inventory_stock(

@router.get("/suppliers", response_model=list[Supplier])
def list_suppliers(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
active_only: bool = True,
):
Expand All @@ -342,7 +357,9 @@ def list_suppliers(
@router.post("/suppliers", response_model=Supplier)
def create_supplier(
supplier_create: SupplierCreate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Create a new supplier"""
Expand All @@ -359,7 +376,9 @@ def create_supplier(
@router.get("/suppliers/{supplier_id}", response_model=Supplier)
def get_supplier(
supplier_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get a single supplier"""
Expand All @@ -375,7 +394,9 @@ def get_supplier(
def update_supplier(
supplier_id: int,
supplier_update: SupplierUpdate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Update a supplier"""
Expand All @@ -398,7 +419,9 @@ def update_supplier(
@router.delete("/suppliers/{supplier_id}")
def delete_supplier(
supplier_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Soft delete a supplier"""
Expand All @@ -420,7 +443,9 @@ def delete_supplier(

@router.get("/purchase-orders")
def list_purchase_orders(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
status: PurchaseOrderStatus | None = None,
supplier_id: int | None = None,
Expand Down Expand Up @@ -470,7 +495,9 @@ def list_purchase_orders(
@router.post("/purchase-orders")
def create_purchase_order(
po_create: PurchaseOrderCreate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Create a new purchase order"""
Expand Down Expand Up @@ -536,7 +563,9 @@ def create_purchase_order(
@router.get("/purchase-orders/{po_id}")
def get_purchase_order(
po_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get a purchase order with full details"""
Expand Down Expand Up @@ -589,7 +618,9 @@ def get_purchase_order(
def update_purchase_order(
po_id: int,
po_update: PurchaseOrderUpdate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Update a purchase order (only while in draft status)"""
Expand Down Expand Up @@ -620,7 +651,9 @@ def update_purchase_order(
def update_purchase_order_status(
po_id: int,
new_status: PurchaseOrderStatus,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Change purchase order status"""
Expand Down Expand Up @@ -657,7 +690,9 @@ def update_purchase_order_status(
def receive_purchase_order(
po_id: int,
receive_input: ReceiveGoodsInput,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Receive goods against a purchase order (GRN)"""
Expand Down Expand Up @@ -703,7 +738,9 @@ def receive_purchase_order(
@router.delete("/purchase-orders/{po_id}")
def cancel_purchase_order(
po_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Cancel a purchase order (only if not yet received)"""
Expand All @@ -729,7 +766,9 @@ def cancel_purchase_order(
@router.get("/purchase-orders/{po_id}/pdf")
def get_purchase_order_pdf(
po_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Generate a professional PDF for a purchase order"""
Expand Down Expand Up @@ -815,7 +854,9 @@ def get_purchase_order_pdf(
@router.get("/recipes/product/{product_id}")
def get_product_recipe(
product_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get recipe (BOM) for a product"""
Expand Down Expand Up @@ -858,7 +899,9 @@ def get_product_recipe(
def update_product_recipe(
product_id: int,
recipe_update: ProductRecipeUpdate,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_MANAGE))
],
session: Session = Depends(get_session),
):
"""Replace entire recipe for a product"""
Expand Down Expand Up @@ -906,7 +949,9 @@ def update_product_recipe(
@router.get("/recipes/product/{product_id}/cost", response_model=ProductCostResponse)
def get_product_cost(
product_id: int,
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Calculate theoretical cost for a product based on its recipe"""
Expand All @@ -930,7 +975,9 @@ def get_product_cost(

@router.get("/stock-levels", response_model=list[StockLevelResponse])
def get_stock_levels(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
category: InventoryCategory | None = None,
):
Expand Down Expand Up @@ -970,7 +1017,9 @@ def get_stock_levels(

@router.get("/low-stock")
def get_low_stock_alerts(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get items at or below reorder level"""
Expand All @@ -994,7 +1043,9 @@ def get_low_stock_alerts(

@router.get("/valuation", response_model=InventoryValuationResponse)
def get_inventory_valuation(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
):
"""Get FIFO inventory valuation report"""
Expand All @@ -1009,7 +1060,9 @@ def get_inventory_valuation(

@router.get("/transactions")
def get_inventory_transactions(
current_user: Annotated[models.User, Depends(get_current_user)],
current_user: Annotated[
models.User, Depends(PermissionChecker(Permissions.INVENTORY_READ))
],
session: Session = Depends(get_session),
item_id: int | None = None,
transaction_type: TransactionType | None = None,
Expand Down
Loading