fastapi-moscow-python-demo/backend/app/api/routes/transactions.py at 5bd391e4f90ce76882a51bbea3b8a8985543d5b8 · vodkar/fastapi-moscow-python-demo · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
"""Transaction management API endpoints."""

from app.api.deps import CurrentUser, SessionDep
from app.constants import BAD_REQUEST_CODE, NOT_FOUND_CODE
from app.crud import create_transaction, get_wallet_by_id
from app.models import TransactionCreate, TransactionPublic
from fastapi import APIRouter, HTTPException

router = APIRouter(prefix="/transactions", tags=["transactions"])


@router.post("/")
def create_user_transaction(
    *,
    session: SessionDep,
    current_user: CurrentUser,
    transaction_in: TransactionCreate,
) -> TransactionPublic:
    """Create new transaction."""
    # Verify the wallet belongs to the current user
    wallet = get_wallet_by_id(session=session, wallet_id=transaction_in.wallet_id)
    if not wallet:
        raise HTTPException(
            status_code=NOT_FOUND_CODE,
            detail="Wallet not found",
        )

    if not current_user.is_superuser and (wallet.user_id != current_user.id):
        raise HTTPException(
            status_code=BAD_REQUEST_CODE,
            detail="Not enough permissions",
        )

    db_transaction = create_transaction(session=session, transaction_in=transaction_in)
    return TransactionPublic.model_validate(db_transaction)