refactor: migrate vendor APIs to token-based context and consolidate architecture

## Vendor-in-Token Architecture (Complete Migration) - Migrate all vendor API endpoints from require_vendor_context() to token_vendor_id - Update permission dependencies to extract vendor from JWT token - Add vendor exceptions: VendorAccessDeniedException, VendorOwnerOnlyException, InsufficientVendorPermissionsException - Shop endpoints retain require_vendor_context() for URL-based detection - Add AUTH-004 architecture rule enforcing vendor context patterns - Fix marketplace router missing /marketplace prefix ## Exception Pattern Fixes (API-003/API-004) - Services raise domain exceptions, endpoints let them bubble up - Add code_quality and content_page exception modules - Move business logic from endpoints to services (admin, auth, content_page) - Fix exception handling in admin, shop, and vendor endpoints ## Tailwind CSS Consolidation - Consolidate CSS to per-area files (admin, vendor, shop, platform) - Remove shared/cdn-fallback.html and shared/css/tailwind.min.css - Update all templates to use area-specific Tailwind output files - Remove Node.js config (package.json, postcss.config.js, tailwind.config.js) ## Documentation & Cleanup - Update vendor-in-token-architecture.md with completed migration status - Update architecture-rules.md with new rules - Move migration docs to docs/development/migration/ - Remove duplicate/obsolete documentation files - Merge pytest.ini settings into pyproject.toml 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-12-04 22:24:45 +01:00
parent 76f8a59954
commit 8a367077e1
85 changed files with 21787 additions and 134978 deletions
--- a/app/api/v1/vendor/dashboard.py
+++ b/app/api/v1/vendor/dashboard.py
@@ -10,7 +10,9 @@ from sqlalchemy.orm import Session

 from app.api.deps import get_current_vendor_api
 from app.core.database import get_db
+from app.exceptions import InvalidTokenException, VendorNotActiveException
 from app.services.stats_service import stats_service
+from app.services.vendor_service import vendor_service
 from models.database.user import User

 router = APIRouter(prefix="/dashboard")
@@ -35,23 +37,17 @@ def get_vendor_dashboard_stats(
    Vendor is determined from the JWT token (vendor_id claim).
    Requires Authorization header (API endpoint).
    """
-    from fastapi import HTTPException
-
    # Get vendor ID from token (set by get_current_vendor_api)
    if not hasattr(current_user, "token_vendor_id"):
-        raise HTTPException(
-            status_code=400,
-            detail="Token missing vendor information. Please login again.",
-        )
+        raise InvalidTokenException("Token missing vendor information. Please login again.")

    vendor_id = current_user.token_vendor_id

-    # Get vendor object to include in response
-    from models.database.vendor import Vendor
+    # Get vendor object (raises VendorNotFoundException if not found)
+    vendor = vendor_service.get_vendor_by_id(db, vendor_id)

-    vendor = db.query(Vendor).filter(Vendor.id == vendor_id).first()
-    if not vendor or not vendor.is_active:
-        raise HTTPException(status_code=404, detail="Vendor not found or inactive")
+    if not vendor.is_active:
+        raise VendorNotActiveException(vendor.vendor_code)

    # Get vendor-scoped statistics
    stats_data = stats_service.get_vendor_stats(db=db, vendor_id=vendor_id)