refactor: migrate vendor APIs to token-based context and consolidate architecture

## Vendor-in-Token Architecture (Complete Migration) - Migrate all vendor API endpoints from require_vendor_context() to token_vendor_id - Update permission dependencies to extract vendor from JWT token - Add vendor exceptions: VendorAccessDeniedException, VendorOwnerOnlyException, InsufficientVendorPermissionsException - Shop endpoints retain require_vendor_context() for URL-based detection - Add AUTH-004 architecture rule enforcing vendor context patterns - Fix marketplace router missing /marketplace prefix ## Exception Pattern Fixes (API-003/API-004) - Services raise domain exceptions, endpoints let them bubble up - Add code_quality and content_page exception modules - Move business logic from endpoints to services (admin, auth, content_page) - Fix exception handling in admin, shop, and vendor endpoints ## Tailwind CSS Consolidation - Consolidate CSS to per-area files (admin, vendor, shop, platform) - Remove shared/cdn-fallback.html and shared/css/tailwind.min.css - Update all templates to use area-specific Tailwind output files - Remove Node.js config (package.json, postcss.config.js, tailwind.config.js) ## Documentation & Cleanup - Update vendor-in-token-architecture.md with completed migration status - Update architecture-rules.md with new rules - Move migration docs to docs/development/migration/ - Remove duplicate/obsolete documentation files - Merge pytest.ini settings into pyproject.toml 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-12-04 22:24:45 +01:00
parent 76f8a59954
commit 8a367077e1
85 changed files with 21787 additions and 134978 deletions
--- a/app/api/v1/vendor/analytics.py
+++ b/app/api/v1/vendor/analytics.py
@@ -1,6 +1,8 @@
 # app/api/v1/vendor/analytics.py
 """
 Vendor analytics and reporting endpoints.
+
+Vendor Context: Uses token_vendor_id from JWT token (authenticated vendor API pattern)
 """

 import logging
@@ -10,21 +12,27 @@ from sqlalchemy.orm import Session

 from app.api.deps import get_current_vendor_api
 from app.core.database import get_db
+from app.exceptions import InvalidTokenException
 from app.services.stats_service import stats_service
-from middleware.vendor_context import require_vendor_context
 from models.database.user import User
-from models.database.vendor import Vendor

 router = APIRouter(prefix="/analytics")
 logger = logging.getLogger(__name__)


+def _get_vendor_id_from_token(current_user: User) -> int:
+    """Helper to get vendor_id from JWT token."""
+    if not hasattr(current_user, "token_vendor_id"):
+        raise InvalidTokenException("Token missing vendor information. Please login again.")
+    return current_user.token_vendor_id
+
+
@router.get("")
 def get_vendor_analytics(
    period: str = Query("30d", description="Time period: 7d, 30d, 90d, 1y"),
-    vendor: Vendor = Depends(require_vendor_context()),
    current_user: User = Depends(get_current_vendor_api),
    db: Session = Depends(get_db),
 ):
    """Get vendor analytics data for specified time period."""
-    return stats_service.get_vendor_analytics(db, vendor.id, period)
+    vendor_id = _get_vendor_id_from_token(current_user)
+    return stats_service.get_vendor_analytics(db, vendor_id, period)