- Full API application, streamlined, de-duplication of document handling code into document_utils.py

- Added meta-data fields to DocumentVersion
- Docker container to support API

eveai_api/api/auth.py

@@ -1,24 +1,66 @@
-from flask_restful import Resource, reqparse
+from flask_restx import Namespace, Resource, fields
 from flask_jwt_extended import create_access_token
 from common.models.user import Tenant
 from common.extensions import simple_encryption
-from flask import current_app
+from flask import current_app, request
+
+auth_ns = Namespace('auth', description='Authentication related operations')
+
+token_model = auth_ns.model('Token', {
+    'tenant_id': fields.Integer(required=True, description='Tenant ID'),
+    'api_key': fields.String(required=True, description='API Key')
+})
+
+token_response = auth_ns.model('TokenResponse', {
+    'access_token': fields.String(description='JWT access token')
+})
 
 
-class TokenResource(Resource):
+@auth_ns.route('/token')
+class Token(Resource):
+    @auth_ns.expect(token_model)
+    @auth_ns.response(200, 'Success', token_response)
+    @auth_ns.response(400, 'Validation Error')
+    @auth_ns.response(401, 'Unauthorized')
+    @auth_ns.response(404, 'Tenant Not Found')
     def post(self):
-        parser = reqparse.RequestParser()
-        parser.add_argument('tenant_id', type=int, required=True)
-        parser.add_argument('api_key', type=str, required=True)
-        args = parser.parse_args()
+        """
+        Get JWT token
+        """
+        current_app.logger.debug(f"Token endpoint called with data: {request.json}")
+
+        try:
+            tenant_id = auth_ns.payload['tenant_id']
+            api_key = auth_ns.payload['api_key']
+        except KeyError as e:
+            current_app.logger.error(f"Missing required field: {e}")
+            return {'message': f"Missing required field: {e}"}, 400
+
+        current_app.logger.debug(f"Querying database for tenant: {tenant_id}")
+        tenant = Tenant.query.get(tenant_id)
 
-        tenant = Tenant.query.get(args['tenant_id'])
         if not tenant:
-            return {'message': 'Tenant not found'}, 404
+            current_app.logger.error(f"Tenant not found: {tenant_id}")
+            return {'message': "Tenant not found"}, 404
 
-        decrypted_api_key = simple_encryption.decrypt_api_key(tenant.encrypted_api_key)
-        if args['api_key'] != decrypted_api_key:
-            return {'message': 'Invalid API key'}, 401
+        current_app.logger.debug(f"Tenant found: {tenant.id}")
 
-        access_token = create_access_token(identity={'tenant_id': tenant.id})
-        return {'access_token': access_token}, 200
+        try:
+            current_app.logger.debug("Attempting to decrypt API key")
+            decrypted_api_key = simple_encryption.decrypt_api_key(tenant.encrypted_api_key)
+        except Exception as e:
+            current_app.logger.error(f"Error decrypting API key: {e}")
+            return {'message': "Internal server error"}, 500
+
+        if api_key != decrypted_api_key:
+            current_app.logger.error(f"Invalid API key for tenant: {tenant_id}")
+            return {'message': "Invalid API key"}, 401
+
+        try:
+            current_app.logger.debug(f"Creating access token for tenant: {tenant_id}")
+            access_token = create_access_token(identity=tenant_id)
+            current_app.logger.debug("Access token created successfully")
+            return {'access_token': access_token}, 200
+        except Exception as e:
+            current_app.logger.error(f"Error creating access token: {e}")
+            return {'message': "Internal server error"}, 500