Release Candidate: Production Release with Multi-Tenant & Onboarding Enhancements
This commit is contained in:
ajaysi
@@ -149,7 +149,7 @@ async def check_usage_limits_middleware(request: Request, user_id: str, request_
|
||||
try:
|
||||
path = request.url.path
|
||||
except Exception:
|
||||
pass
|
||||
path = ""
|
||||
|
||||
db = None
|
||||
try:
|
||||
@@ -159,8 +159,16 @@ async def check_usage_limits_middleware(request: Request, user_id: str, request_
|
||||
|
||||
api_monitor = DatabaseAPIMonitor()
|
||||
|
||||
# Safe User-Agent access
|
||||
user_agent = None
|
||||
try:
|
||||
if hasattr(request, 'headers') and hasattr(request.headers, 'get'):
|
||||
user_agent = request.headers.get('user-agent')
|
||||
except:
|
||||
pass
|
||||
|
||||
# Detect if this is an API call that should be rate limited
|
||||
api_provider = api_monitor.detect_api_provider(request.url.path, request.headers.get('user-agent'))
|
||||
api_provider = api_monitor.detect_api_provider(path, user_agent)
|
||||
if not api_provider:
|
||||
return None
|
||||
|
||||
@@ -236,9 +244,28 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
user_id = None
|
||||
try:
|
||||
# PRIORITY 1: Check request.state.user_id (set by API key injection middleware)
|
||||
if hasattr(request.state, 'user_id') and request.state.user_id:
|
||||
user_id = request.state.user_id
|
||||
logger.debug(f"Monitoring: Using user_id from request.state: {user_id}")
|
||||
if hasattr(request.state, 'user_id'):
|
||||
# Directly check and convert without accessing attribute if None
|
||||
raw_user_id = request.state.user_id
|
||||
|
||||
# Defensive check for Depends object or other complex types
|
||||
if raw_user_id is not None:
|
||||
# If it's a string, use it
|
||||
if isinstance(raw_user_id, str):
|
||||
user_id = raw_user_id
|
||||
# If it has a dependency attribute (likely a Depends object), ignore it
|
||||
elif hasattr(raw_user_id, 'dependency'):
|
||||
logger.warning(f"Monitoring: request.state.user_id is a Depends object, ignoring.")
|
||||
user_id = None
|
||||
# Try to convert to string if it's a simple type
|
||||
else:
|
||||
try:
|
||||
user_id = str(raw_user_id)
|
||||
except:
|
||||
user_id = None
|
||||
|
||||
if user_id:
|
||||
logger.debug(f"Monitoring: Using user_id from request.state: {user_id}")
|
||||
|
||||
# PRIORITY 2: Check query parameters
|
||||
elif hasattr(request, 'query_params') and 'user_id' in request.query_params:
|
||||
@@ -247,20 +274,23 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
user_id = request.path_params['user_id']
|
||||
|
||||
# PRIORITY 3: Check headers for user identification
|
||||
elif 'x-user-id' in request.headers:
|
||||
user_id = request.headers['x-user-id']
|
||||
elif 'x-user-email' in request.headers:
|
||||
user_id = request.headers['x-user-email'] # Use email as user identifier
|
||||
elif 'x-session-id' in request.headers:
|
||||
user_id = request.headers['x-session-id'] # Use session as fallback
|
||||
|
||||
# Check for authorization header with user info
|
||||
elif 'authorization' in request.headers:
|
||||
# Auth middleware should have set request.state.user_id
|
||||
# If not, this indicates an authentication failure (likely expired token)
|
||||
# Log at debug level to reduce noise - expired tokens are expected
|
||||
# But we can try to decode token if we really needed to, but let's rely on auth middleware
|
||||
pass
|
||||
elif hasattr(request, 'headers') and hasattr(request.headers, 'get'):
|
||||
try:
|
||||
if request.headers.get('x-user-id'):
|
||||
user_id = request.headers.get('x-user-id')
|
||||
elif request.headers.get('x-user-email'):
|
||||
user_id = request.headers.get('x-user-email')
|
||||
elif request.headers.get('x-session-id'):
|
||||
user_id = request.headers.get('x-session-id')
|
||||
|
||||
# Check for authorization header with user info
|
||||
elif request.headers.get('authorization'):
|
||||
# Auth middleware should have set request.state.user_id
|
||||
# If not, this indicates an authentication failure (likely expired token)
|
||||
# Log at debug level to reduce noise - expired tokens are expected
|
||||
pass
|
||||
except Exception as e:
|
||||
logger.debug(f"Error accessing request headers: {e}")
|
||||
|
||||
except Exception as e:
|
||||
logger.debug(f"Error extracting user ID: {e}")
|
||||
@@ -269,7 +299,11 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
# Get database session if user identified
|
||||
db = None
|
||||
if user_id:
|
||||
db = get_session_for_user(user_id)
|
||||
try:
|
||||
db = get_session_for_user(user_id)
|
||||
except Exception as e:
|
||||
logger.error(f"Failed to get database session for user {user_id}: {e}")
|
||||
db = None
|
||||
|
||||
# Capture request body for usage tracking (read once, safely)
|
||||
request_body = None
|
||||
@@ -291,29 +325,52 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
request_body = None
|
||||
|
||||
# Check usage limits before processing
|
||||
limit_response = await check_usage_limits_middleware(request, user_id, request_body)
|
||||
if limit_response:
|
||||
if db: db.close()
|
||||
return limit_response
|
||||
# Skip for OPTIONS requests
|
||||
try:
|
||||
if request.method != "OPTIONS":
|
||||
limit_response = await check_usage_limits_middleware(request, user_id, request_body)
|
||||
if limit_response:
|
||||
if db: db.close()
|
||||
return limit_response
|
||||
except Exception as e:
|
||||
logger.error(f"Error in usage limits middleware: {e}")
|
||||
# Continue processing if usage check fails (fail open)
|
||||
|
||||
try:
|
||||
response = await call_next(request)
|
||||
status_code = response.status_code
|
||||
duration = time.time() - start_time
|
||||
|
||||
# Capture response body for usage tracking
|
||||
# Extract response body safely for usage tracking
|
||||
response_body = None
|
||||
try:
|
||||
if hasattr(response, 'body'):
|
||||
response_body = response.body.decode('utf-8') if response.body else None
|
||||
elif hasattr(response, '_content'):
|
||||
response_body = response._content.decode('utf-8') if response._content else None
|
||||
except:
|
||||
pass
|
||||
|
||||
if hasattr(response, 'body'):
|
||||
response_body = response.body.decode('utf-8') if response.body else None
|
||||
elif hasattr(response, '_content'):
|
||||
response_body = response._content.decode('utf-8') if response._content else None
|
||||
|
||||
# Track API usage if this is an API call to external providers
|
||||
api_monitor = DatabaseAPIMonitor()
|
||||
api_provider = api_monitor.detect_api_provider(request.url.path, request.headers.get('user-agent'))
|
||||
|
||||
# Safe URL path access
|
||||
try:
|
||||
path = request.url.path
|
||||
except:
|
||||
path = ""
|
||||
|
||||
# Safe User-Agent access - handle case where headers might be a Depends object
|
||||
user_agent = None
|
||||
try:
|
||||
# Defensive check: ensure request.headers is a valid headers object
|
||||
# Some dependency injection failures replace request attributes with Depends objects
|
||||
if hasattr(request, 'headers'):
|
||||
headers_obj = request.headers
|
||||
# Check if it has a 'get' method (like a dict or Headers object)
|
||||
if hasattr(headers_obj, 'get') and callable(headers_obj.get):
|
||||
user_agent = headers_obj.get('user-agent')
|
||||
except:
|
||||
pass
|
||||
|
||||
api_provider = api_monitor.detect_api_provider(path, user_agent)
|
||||
if api_provider and user_id:
|
||||
logger.info(f"Detected API call: {request.url.path} -> {api_provider.value} for user: {user_id}")
|
||||
try:
|
||||
@@ -326,7 +383,7 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
await usage_service.track_api_usage(
|
||||
user_id=user_id,
|
||||
provider=api_provider,
|
||||
endpoint=request.url.path,
|
||||
endpoint=path,
|
||||
method=request.method,
|
||||
model_used=usage_metrics.get('model_used'),
|
||||
tokens_input=usage_metrics.get('tokens_input', 0),
|
||||
@@ -335,7 +392,7 @@ async def monitoring_middleware(request: Request, call_next):
|
||||
status_code=status_code,
|
||||
request_size=len(request_body) if request_body else None,
|
||||
response_size=len(response_body) if response_body else None,
|
||||
user_agent=request.headers.get('user-agent'),
|
||||
user_agent=user_agent,
|
||||
ip_address=request.client.host if request.client else None,
|
||||
search_count=usage_metrics.get('search_count', 0),
|
||||
image_count=usage_metrics.get('image_count', 0),
|
||||
|
||||
487
backend/services/subscription/stripe_service.py
Normal file
487
backend/services/subscription/stripe_service.py
Normal file
@@ -0,0 +1,487 @@
|
||||
import os
|
||||
import stripe
|
||||
from typing import Optional, Dict, Any
|
||||
from loguru import logger
|
||||
from fastapi import HTTPException
|
||||
from sqlalchemy.orm import Session
|
||||
from models.subscription_models import UserSubscription, SubscriptionPlan, SubscriptionTier, BillingCycle, UsageStatus, FraudWarning
|
||||
from services.subscription.pricing_service import PricingService
|
||||
from datetime import datetime
|
||||
|
||||
STRIPE_PLAN_PRICE_MAPPING = {
|
||||
(SubscriptionTier.BASIC.value, BillingCycle.MONTHLY.value): "price_1T2lWHR2EuR7zQJepLIVQ1EJ",
|
||||
(SubscriptionTier.PRO.value, BillingCycle.MONTHLY.value): "price_1T2ljDR2EuR7zQJeuS317KCj",
|
||||
}
|
||||
|
||||
STRIPE_PRICE_TO_PLAN = {
|
||||
price_id: {"tier": SubscriptionTier(tier), "billing_cycle": BillingCycle(billing_cycle)}
|
||||
for (tier, billing_cycle), price_id in STRIPE_PLAN_PRICE_MAPPING.items()
|
||||
}
|
||||
|
||||
class StripeService:
|
||||
def __init__(self, db: Session):
|
||||
self.db = db
|
||||
self.api_key = os.getenv("STRIPE_SECRET_KEY")
|
||||
self.webhook_secret = os.getenv("STRIPE_WEBHOOK_SECRET")
|
||||
if not self.api_key:
|
||||
logger.warning("STRIPE_SECRET_KEY is not set. Stripe integration will not work.")
|
||||
else:
|
||||
stripe.api_key = self.api_key
|
||||
|
||||
def _get_price_id_for_plan(self, tier: SubscriptionTier, billing_cycle: BillingCycle) -> str:
|
||||
key = (tier.value, billing_cycle.value)
|
||||
price_id = STRIPE_PLAN_PRICE_MAPPING.get(key)
|
||||
if not price_id:
|
||||
logger.error(f"No Stripe price configured for tier={tier.value}, billing_cycle={billing_cycle.value}")
|
||||
raise HTTPException(status_code=400, detail="Payment plan is not configured")
|
||||
return price_id
|
||||
|
||||
def _get_plan_for_price_id(self, price_id: str) -> tuple[SubscriptionPlan, BillingCycle]:
|
||||
mapping = STRIPE_PRICE_TO_PLAN.get(price_id)
|
||||
if not mapping:
|
||||
logger.error(f"Unknown Stripe price_id: {price_id}")
|
||||
raise HTTPException(status_code=400, detail="Unknown payment price configuration")
|
||||
tier = mapping["tier"]
|
||||
billing_cycle = mapping["billing_cycle"]
|
||||
plan = (
|
||||
self.db.query(SubscriptionPlan)
|
||||
.filter(SubscriptionPlan.tier == tier, SubscriptionPlan.is_active == True)
|
||||
.order_by(SubscriptionPlan.price_monthly)
|
||||
.first()
|
||||
)
|
||||
if not plan:
|
||||
logger.error(f"No subscription plan found for tier={tier.value}")
|
||||
raise HTTPException(status_code=400, detail="Subscription plan not found for payment price")
|
||||
return plan, billing_cycle
|
||||
|
||||
def _get_or_create_customer(self, user_id: str, email: Optional[str] = None) -> str:
|
||||
"""
|
||||
Get existing Stripe customer ID for user, or create a new one.
|
||||
"""
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
UserSubscription.user_id == user_id
|
||||
).first()
|
||||
|
||||
if subscription and subscription.stripe_customer_id:
|
||||
return subscription.stripe_customer_id
|
||||
|
||||
# Search Stripe for existing customer by email (if provided) or metadata
|
||||
try:
|
||||
# If we have an email, search by email first
|
||||
if email:
|
||||
existing_customers = stripe.Customer.list(email=email, limit=1)
|
||||
if existing_customers and len(existing_customers.data) > 0:
|
||||
customer = existing_customers.data[0]
|
||||
# Update DB
|
||||
if subscription:
|
||||
subscription.stripe_customer_id = customer.id
|
||||
self.db.commit()
|
||||
return customer.id
|
||||
|
||||
# Search by metadata user_id
|
||||
existing_customers = stripe.Customer.search(
|
||||
query=f"metadata['user_id']:'{user_id}'",
|
||||
limit=1
|
||||
)
|
||||
if existing_customers and len(existing_customers.data) > 0:
|
||||
customer = existing_customers.data[0]
|
||||
if subscription:
|
||||
subscription.stripe_customer_id = customer.id
|
||||
self.db.commit()
|
||||
return customer.id
|
||||
|
||||
except Exception as e:
|
||||
logger.error(f"Error searching Stripe customer: {e}")
|
||||
|
||||
# Create new customer
|
||||
try:
|
||||
customer_data = {
|
||||
"metadata": {"user_id": user_id},
|
||||
}
|
||||
if email:
|
||||
customer_data["email"] = email
|
||||
|
||||
customer = stripe.Customer.create(**customer_data)
|
||||
|
||||
# Update DB
|
||||
if subscription:
|
||||
subscription.stripe_customer_id = customer.id
|
||||
else:
|
||||
# Create a placeholder subscription record if none exists (usually created on signup/free tier)
|
||||
# But typically we expect a free tier record to exist.
|
||||
pass
|
||||
|
||||
self.db.commit()
|
||||
return customer.id
|
||||
except Exception as e:
|
||||
logger.error(f"Error creating Stripe customer: {e}")
|
||||
raise HTTPException(status_code=500, detail="Failed to create payment profile")
|
||||
|
||||
def create_checkout_session(
|
||||
self,
|
||||
user_id: str,
|
||||
tier: SubscriptionTier,
|
||||
billing_cycle: BillingCycle,
|
||||
success_url: str,
|
||||
cancel_url: str,
|
||||
user_email: Optional[str] = None,
|
||||
) -> str:
|
||||
"""
|
||||
Create a Stripe Checkout Session for a subscription.
|
||||
"""
|
||||
if not self.api_key:
|
||||
raise HTTPException(status_code=500, detail="Payment service not configured")
|
||||
|
||||
price_id = self._get_price_id_for_plan(tier, billing_cycle)
|
||||
customer_id = self._get_or_create_customer(user_id, user_email)
|
||||
|
||||
line_item: Dict[str, Any] = {"price": price_id}
|
||||
try:
|
||||
price = stripe.Price.retrieve(price_id)
|
||||
recurring = getattr(price, "recurring", None)
|
||||
usage_type = None
|
||||
if recurring:
|
||||
if isinstance(recurring, dict):
|
||||
usage_type = recurring.get("usage_type")
|
||||
else:
|
||||
usage_type = getattr(recurring, "usage_type", None)
|
||||
if usage_type != "metered":
|
||||
line_item["quantity"] = 1
|
||||
else:
|
||||
logger.info(f"Detected metered price {price_id}; omitting quantity in Checkout line item")
|
||||
except Exception as e:
|
||||
logger.error(f"Error inspecting Stripe price {price_id}: {e}")
|
||||
line_item["quantity"] = 1
|
||||
|
||||
try:
|
||||
checkout_session = stripe.checkout.Session.create(
|
||||
customer=customer_id,
|
||||
payment_method_types=["card"],
|
||||
line_items=[line_item],
|
||||
mode="subscription",
|
||||
success_url=success_url,
|
||||
cancel_url=cancel_url,
|
||||
metadata={
|
||||
"user_id": user_id,
|
||||
"price_id": price_id,
|
||||
},
|
||||
subscription_data={
|
||||
"metadata": {
|
||||
"user_id": user_id,
|
||||
}
|
||||
},
|
||||
allow_promotion_codes=True,
|
||||
)
|
||||
return checkout_session.url
|
||||
except Exception as e:
|
||||
logger.error(f"Error creating checkout session: {e}")
|
||||
raise HTTPException(status_code=500, detail=str(e))
|
||||
|
||||
def create_portal_session(self, user_id: str, return_url: str) -> str:
|
||||
"""
|
||||
Create a Stripe Customer Portal session for managing billing.
|
||||
"""
|
||||
if not self.api_key:
|
||||
raise HTTPException(status_code=500, detail="Payment service not configured")
|
||||
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
UserSubscription.user_id == user_id
|
||||
).first()
|
||||
|
||||
if not subscription or not subscription.stripe_customer_id:
|
||||
# Try to find customer by user_id if not in DB
|
||||
try:
|
||||
customers = stripe.Customer.search(query=f"metadata['user_id']:'{user_id}'", limit=1)
|
||||
if customers and len(customers.data) > 0:
|
||||
customer_id = customers.data[0].id
|
||||
# Update DB while we're at it
|
||||
if subscription:
|
||||
subscription.stripe_customer_id = customer_id
|
||||
self.db.commit()
|
||||
else:
|
||||
raise HTTPException(status_code=400, detail="No billing profile found for this user")
|
||||
except Exception as e:
|
||||
logger.error(f"Error finding customer for portal: {e}")
|
||||
raise HTTPException(status_code=500, detail="Failed to access billing portal")
|
||||
else:
|
||||
customer_id = subscription.stripe_customer_id
|
||||
|
||||
try:
|
||||
portal_session = stripe.billing_portal.Session.create(
|
||||
customer=customer_id,
|
||||
return_url=return_url,
|
||||
)
|
||||
return portal_session.url
|
||||
except Exception as e:
|
||||
logger.error(f"Error creating portal session: {e}")
|
||||
raise HTTPException(status_code=500, detail=str(e))
|
||||
|
||||
async def handle_webhook(self, payload: bytes, sig_header: str):
|
||||
"""
|
||||
Handle Stripe webhooks.
|
||||
"""
|
||||
if not self.webhook_secret:
|
||||
logger.warning("STRIPE_WEBHOOK_SECRET not set. Ignoring webhook.")
|
||||
return
|
||||
|
||||
try:
|
||||
event = stripe.Webhook.construct_event(
|
||||
payload, sig_header, self.webhook_secret
|
||||
)
|
||||
except ValueError as e:
|
||||
logger.error(f"Invalid payload: {e}")
|
||||
raise HTTPException(status_code=400, detail="Invalid payload")
|
||||
except stripe.error.SignatureVerificationError as e:
|
||||
logger.error(f"Invalid signature: {e}")
|
||||
raise HTTPException(status_code=400, detail="Invalid signature")
|
||||
|
||||
event_type = event["type"]
|
||||
data = event["data"]["object"]
|
||||
|
||||
logger.info(f"Received Stripe webhook: {event_type}")
|
||||
|
||||
if event_type == "checkout.session.completed":
|
||||
await self._handle_checkout_completed(data)
|
||||
elif event_type == "invoice.payment_succeeded":
|
||||
await self._handle_invoice_payment_succeeded(data)
|
||||
elif event_type == "invoice.payment_failed":
|
||||
await self._handle_invoice_payment_failed(data)
|
||||
elif event_type == "customer.subscription.updated":
|
||||
await self._handle_subscription_updated(data)
|
||||
elif event_type == "customer.subscription.deleted":
|
||||
await self._handle_subscription_deleted(data)
|
||||
elif event_type.startswith("radar.early_fraud_warning."):
|
||||
await self._handle_early_fraud_warning(data)
|
||||
|
||||
return {"status": "success"}
|
||||
|
||||
async def _handle_checkout_completed(self, session: Dict[str, Any]):
|
||||
"""
|
||||
Handle successful checkout.
|
||||
"""
|
||||
user_id = session.get("metadata", {}).get("user_id")
|
||||
customer_id = session.get("customer")
|
||||
subscription_id = session.get("subscription")
|
||||
|
||||
if not user_id:
|
||||
logger.error("No user_id in checkout session metadata")
|
||||
return
|
||||
|
||||
logger.info(f"Checkout completed for user {user_id}")
|
||||
|
||||
# Retrieve subscription details to get the plan/price
|
||||
if subscription_id:
|
||||
try:
|
||||
sub = stripe.Subscription.retrieve(subscription_id)
|
||||
price_id = sub['items']['data'][0]['price']['id']
|
||||
# Map price_id to internal plan_id
|
||||
# Note: You need a way to map Stripe Price IDs to your Plan IDs.
|
||||
# For now, we'll assume the metadata or a lookup.
|
||||
# Ideally, store price_id in SubscriptionPlan table or config.
|
||||
|
||||
# Update DB
|
||||
self._update_user_subscription(
|
||||
user_id,
|
||||
stripe_customer_id=customer_id,
|
||||
stripe_subscription_id=subscription_id,
|
||||
status="active",
|
||||
price_id=price_id
|
||||
)
|
||||
except Exception as e:
|
||||
logger.error(f"Error processing checkout subscription: {e}")
|
||||
|
||||
async def _handle_invoice_payment_succeeded(self, invoice: Dict[str, Any]):
|
||||
"""
|
||||
Handle recurring payment success.
|
||||
"""
|
||||
subscription_id = invoice.get("subscription")
|
||||
customer_id = invoice.get("customer")
|
||||
|
||||
if not subscription_id:
|
||||
return
|
||||
|
||||
# Find user by stripe_subscription_id or customer_id
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
(UserSubscription.stripe_subscription_id == subscription_id) |
|
||||
(UserSubscription.stripe_customer_id == customer_id)
|
||||
).first()
|
||||
|
||||
if subscription:
|
||||
logger.info(f"Payment succeeded for user {subscription.user_id}")
|
||||
subscription.status = UsageStatus.ACTIVE
|
||||
subscription.is_active = True
|
||||
# Update period end based on invoice lines period
|
||||
if invoice.get('lines'):
|
||||
period_end = invoice['lines']['data'][0]['period']['end']
|
||||
subscription.current_period_end = datetime.fromtimestamp(period_end)
|
||||
self.db.commit()
|
||||
|
||||
async def _handle_invoice_payment_failed(self, invoice: Dict[str, Any]):
|
||||
subscription_id = invoice.get("subscription")
|
||||
customer_id = invoice.get("customer")
|
||||
|
||||
if not subscription_id:
|
||||
return
|
||||
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
(UserSubscription.stripe_subscription_id == subscription_id) |
|
||||
(UserSubscription.stripe_customer_id == customer_id)
|
||||
).first()
|
||||
|
||||
if subscription:
|
||||
logger.warning(f"Payment failed for user {subscription.user_id}")
|
||||
subscription.status = UsageStatus.PAST_DUE
|
||||
subscription.is_active = False
|
||||
self.db.commit()
|
||||
|
||||
async def _handle_subscription_updated(self, subscription_obj: Dict[str, Any]):
|
||||
"""
|
||||
Handle subscription updates (cancellations, changes).
|
||||
"""
|
||||
stripe_sub_id = subscription_obj.get("id")
|
||||
status = subscription_obj.get("status")
|
||||
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
UserSubscription.stripe_subscription_id == stripe_sub_id
|
||||
).first()
|
||||
|
||||
if subscription:
|
||||
logger.info(f"Subscription {stripe_sub_id} updated to {status}")
|
||||
if status in ["active", "trialing"]:
|
||||
subscription.status = UsageStatus.ACTIVE
|
||||
subscription.is_active = True
|
||||
elif status in ["past_due", "unpaid", "incomplete", "incomplete_expired"]:
|
||||
subscription.status = UsageStatus.PAST_DUE
|
||||
subscription.is_active = False
|
||||
elif status in ["canceled"]:
|
||||
subscription.status = UsageStatus.CANCELLED
|
||||
subscription.is_active = False
|
||||
subscription.auto_renew = False
|
||||
|
||||
self.db.commit()
|
||||
|
||||
async def _handle_subscription_deleted(self, subscription_obj: Dict[str, Any]):
|
||||
"""
|
||||
Handle subscription cancellation (immediate).
|
||||
"""
|
||||
stripe_sub_id = subscription_obj.get("id")
|
||||
|
||||
subscription = self.db.query(UserSubscription).filter(
|
||||
UserSubscription.stripe_subscription_id == stripe_sub_id
|
||||
).first()
|
||||
|
||||
if subscription:
|
||||
logger.info(f"Subscription {stripe_sub_id} deleted")
|
||||
subscription.status = UsageStatus.CANCELLED # Need to check if this enum value exists
|
||||
subscription.is_active = False
|
||||
subscription.auto_renew = False
|
||||
self.db.commit()
|
||||
|
||||
async def _handle_early_fraud_warning(self, warning_obj: Dict[str, Any]):
|
||||
efw_id = warning_obj.get("id")
|
||||
if not efw_id:
|
||||
return
|
||||
|
||||
charge_id = warning_obj.get("charge")
|
||||
payment_intent_id = warning_obj.get("payment_intent")
|
||||
created_ts = warning_obj.get("created")
|
||||
created_at = datetime.utcfromtimestamp(created_ts) if created_ts else datetime.utcnow()
|
||||
|
||||
amount = 0
|
||||
currency = ""
|
||||
user_id = None
|
||||
charge_data: Dict[str, Any] = {}
|
||||
|
||||
if charge_id and self.api_key:
|
||||
try:
|
||||
charge = stripe.Charge.retrieve(charge_id)
|
||||
charge_data = charge.to_dict() if hasattr(charge, "to_dict") else dict(charge)
|
||||
amount = charge_data.get("amount") or 0
|
||||
currency = charge_data.get("currency") or ""
|
||||
metadata = charge_data.get("metadata") or {}
|
||||
user_id = metadata.get("user_id")
|
||||
except Exception as e:
|
||||
logger.error(f"Error retrieving charge for early fraud warning {efw_id}: {e}")
|
||||
|
||||
if not amount:
|
||||
amount = warning_obj.get("amount") or 0
|
||||
if not currency:
|
||||
currency = warning_obj.get("currency") or ""
|
||||
|
||||
existing = self.db.query(FraudWarning).filter(FraudWarning.id == efw_id).first()
|
||||
|
||||
metadata_payload: Dict[str, Any] = {
|
||||
"early_fraud_warning": warning_obj,
|
||||
}
|
||||
if charge_data:
|
||||
metadata_payload["charge"] = charge_data
|
||||
|
||||
if existing:
|
||||
existing.charge_id = charge_id or existing.charge_id
|
||||
existing.payment_intent_id = payment_intent_id or existing.payment_intent_id
|
||||
if user_id:
|
||||
existing.user_id = user_id
|
||||
if amount:
|
||||
existing.amount = amount
|
||||
if currency:
|
||||
existing.currency = currency
|
||||
existing.status = "open"
|
||||
existing.meta_info = metadata_payload
|
||||
else:
|
||||
if not charge_id:
|
||||
return
|
||||
warning = FraudWarning(
|
||||
id=efw_id,
|
||||
charge_id=charge_id,
|
||||
payment_intent_id=payment_intent_id,
|
||||
user_id=user_id,
|
||||
amount=amount or 0,
|
||||
currency=currency or "",
|
||||
status="open",
|
||||
action="none",
|
||||
meta_info=metadata_payload,
|
||||
created_at=created_at,
|
||||
)
|
||||
self.db.add(warning)
|
||||
|
||||
self.db.commit()
|
||||
|
||||
def _update_user_subscription(
|
||||
self,
|
||||
user_id: str,
|
||||
stripe_customer_id: str,
|
||||
stripe_subscription_id: str,
|
||||
status: str,
|
||||
price_id: str,
|
||||
):
|
||||
plan, billing_cycle = self._get_plan_for_price_id(price_id)
|
||||
|
||||
subscription = (
|
||||
self.db.query(UserSubscription)
|
||||
.filter(UserSubscription.user_id == user_id)
|
||||
.first()
|
||||
)
|
||||
|
||||
now = datetime.utcnow()
|
||||
|
||||
if not subscription:
|
||||
subscription = UserSubscription(
|
||||
user_id=user_id,
|
||||
plan_id=plan.id,
|
||||
billing_cycle=billing_cycle,
|
||||
current_period_start=now,
|
||||
current_period_end=now,
|
||||
status=UsageStatus.ACTIVE if status == "active" else UsageStatus.SUSPENDED,
|
||||
is_active=status == "active",
|
||||
auto_renew=True,
|
||||
)
|
||||
self.db.add(subscription)
|
||||
else:
|
||||
subscription.plan_id = plan.id
|
||||
subscription.billing_cycle = billing_cycle
|
||||
subscription.is_active = status == "active"
|
||||
|
||||
subscription.stripe_customer_id = stripe_customer_id
|
||||
subscription.stripe_subscription_id = stripe_subscription_id
|
||||
|
||||
self.db.commit()
|
||||
Reference in New Issue
Block a user