refacto(user): POST /v1/admin/users endpoint clean archi refactoring (#867)

benjaminpilia · Benjamin PILIA · leoguillaume · web-flow · commit 57059f5611a5 · 2026-05-22T10:39:46.000+02:00
* refacto create_user repository method

* refacto bootstrap admin user

* add integration tests

* BSR: add AccountExpiredHTTPException to endpoints documentation

* refacto endpoints documentation

* refacto create_user repo method

* Update unit coverage badge

* restore not admin exception documentation

* hash password in dedicated function

* Update unit coverage badge

---------

Co-authored-by: Benjamin PILIA &lt;benjamin.pilia@protonmail.com&gt;
Co-authored-by: benjaminpilia &lt;benjaminpilia@users.noreply.github.com&gt;
Co-authored-by: leoguillaume &lt;leo.ch.guillaume@gmail.com&gt;
Co-authored-by: leoguillaume &lt;leoguillaume@users.noreply.github.com&gt;
diff --git a/.github/badges/coverage.json b/.github/badges/coverage.json
@@ -1 +1 @@
-{"schemaVersion":1,"label":"coverage","message":"56.24%","color":"red"}
+{"schemaVersion":1,"label":"coverage","message":"56.29%","color":"red"}
diff --git a/api/helpers/_usagetokenizer.py b/api/helpers/_usagetokenizer.py
@@ -10,7 +10,14 @@
 
 
 class UsageTokenizer:
-    USAGE_ENDPOINTS = [EndpointRoute.AUDIO_TRANSCRIPTIONS, EndpointRoute.CHAT_COMPLETIONS, EndpointRoute.EMBEDDINGS, EndpointRoute.OCR, EndpointRoute.RERANK, EndpointRoute.SEARCH]
+    USAGE_ENDPOINTS = [
+        EndpointRoute.AUDIO_TRANSCRIPTIONS,
+        EndpointRoute.CHAT_COMPLETIONS,
+        EndpointRoute.EMBEDDINGS,
+        EndpointRoute.OCR,
+        EndpointRoute.RERANK,
+        EndpointRoute.SEARCH,
+    ]
 
     def __init__(self, tokenizer: Tokenizer):
         if tokenizer == Tokenizer.TIKTOKEN_O200K_BASE:
diff --git a/api/infrastructure/fastapi/endpoints/admin/providers.py b/api/infrastructure/fastapi/endpoints/admin/providers.py
@@ -66,15 +66,17 @@
     path=EndpointRoute.ADMIN_PROVIDERS,
     dependencies=[Security(dependency=get_current_key)],
     status_code=201,
-    responses=get_documentation_responses([
-        InconsistentModelMaxContextLengthHTTPException,
-        InconsistentModelVectorSizeHTTPException,
-        InvalidProviderTypeHTTPException,
-        ProviderNotReachableHTTPException,
-        ProviderAlreadyExistsHTTPException,
-        RouterNotFoundHTTPException,
-        NotAdminUserHTTPException,
-    ]),
+    responses=get_documentation_responses(
+        exceptions=[
+            InconsistentModelMaxContextLengthHTTPException,
+            InconsistentModelVectorSizeHTTPException,
+            InvalidProviderTypeHTTPException,
+            ProviderNotReachableHTTPException,
+            ProviderAlreadyExistsHTTPException,
+            RouterNotFoundHTTPException,
+            NotAdminUserHTTPException,
+        ]
+    ),
 )
 async def create_provider(
     body: CreateProviderBody,
@@ -143,7 +145,7 @@ async def create_provider(
     path=EndpointRoute.ADMIN_PROVIDERS + "/{provider_id}",
     dependencies=[Security(dependency=get_current_key)],
     status_code=200,
-    responses=get_documentation_responses([NotAdminUserHTTPException, ProviderNotFoundHTTPException]),
+    responses=get_documentation_responses([ProviderNotFoundHTTPException, NotAdminUserHTTPException]),
 )
 async def delete_provider(
     provider_id: int = Path(description="The ID of the provider to delete."),
@@ -185,15 +187,17 @@ async def delete_provider(
     path=EndpointRoute.ADMIN_PROVIDERS + "/{provider_id}",
     dependencies=[Security(dependency=get_current_key)],
     status_code=200,
-    responses=get_documentation_responses([
-        InconsistentModelMaxContextLengthHTTPException,
-        InconsistentModelVectorSizeHTTPException,
-        InvalidProviderTypeHTTPException,
-        ProviderAlreadyExistsHTTPException,
-        RouterNotFoundHTTPException,
-        ProviderNotFoundHTTPException,
-        NotAdminUserHTTPException,
-    ]),
+    responses=get_documentation_responses(
+        [
+            InconsistentModelMaxContextLengthHTTPException,
+            InconsistentModelVectorSizeHTTPException,
+            InvalidProviderTypeHTTPException,
+            ProviderAlreadyExistsHTTPException,
+            RouterNotFoundHTTPException,
+            ProviderNotFoundHTTPException,
+            NotAdminUserHTTPException,
+        ]
+    ),
 )
 async def update_provider(
     provider_id: int = Path(description="The ID of the provider to update."),
diff --git a/api/infrastructure/fastapi/endpoints/admin/routers.py b/api/infrastructure/fastapi/endpoints/admin/routers.py
@@ -221,12 +221,14 @@ async def delete_router(
 @router.patch(
     path=EndpointRoute.ADMIN_ROUTERS + "/{router_id}",
     dependencies=[Security(dependency=get_current_key)],
-    responses=get_documentation_responses([
-        RouterNotFoundHTTPException,
-        NotAdminUserHTTPException,
-        RouterAliasAlreadyExistsHTTPException,
-        RouterAlreadyExistsHTTPException,
-    ]),
+    responses=get_documentation_responses(
+        [
+            NotAdminUserHTTPException,
+            RouterNotFoundHTTPException,
+            RouterAliasAlreadyExistsHTTPException,
+            RouterAlreadyExistsHTTPException,
+        ]
+    ),
     status_code=200,
 )
 async def update_router(
diff --git a/api/infrastructure/fastapi/endpoints/admin/users.py b/api/infrastructure/fastapi/endpoints/admin/users.py
@@ -30,12 +30,14 @@
     path=EndpointRoute.ADMIN_USERS,
     dependencies=[Security(dependency=get_current_key)],
     status_code=201,
-    responses=get_documentation_responses([
-        UserAlreadyExistsHTTPException,
-        RoleNotFoundHTTPException,
-        OrganizationNotFoundHTTPException,
-        NotAdminUserHTTPException,
-    ]),
+    responses=get_documentation_responses(
+        [
+            UserAlreadyExistsHTTPException,
+            RoleNotFoundHTTPException,
+            OrganizationNotFoundHTTPException,
+            NotAdminUserHTTPException,
+        ]
+    ),
 )
 async def create_user(
     body: CreateUserBody = Body(description="The user creation request."),
diff --git a/api/infrastructure/postgres/_postgresusersrepository.py b/api/infrastructure/postgres/_postgresusersrepository.py
@@ -2,7 +2,7 @@
 
 import bcrypt
 from sqlalchemy import Integer, cast, func, insert, select, update
-from sqlalchemy.exc import IntegrityError, NoResultFound
+from sqlalchemy.exc import IntegrityError
 from sqlalchemy.ext.asyncio import AsyncSession
 
 from api.domain.organization.errors import OrganizationNotFoundError
@@ -12,9 +12,7 @@
 from api.domain.user.entities import User
 from api.domain.user.errors import UserAlreadyExistsError, UserNotFoundError
 from api.infrastructure.postgres.decorators import with_lock
-from api.sql.models import Organization as OrganizationTable
 from api.sql.models import Permission as PermissionTable
-from api.sql.models import Role as RoleTable
 from api.sql.models import User as UserTable
 from api.utils.exceptions import UserNotFoundException
 
@@ -44,6 +42,10 @@ def _row_to_user(row) -> User:
             updated=row.updated,
         )
 
+    @staticmethod
+    def _hash_password(password: str) -> str:
+        return bcrypt.hashpw(password.encode("utf-8"), bcrypt.gensalt()).decode("utf-8")
+
     @with_lock(namespace="user", key="email")
     async def create_user(
         self,
@@ -58,55 +60,45 @@ async def create_user(
         expires: int | None = None,
         priority: int = 0,
     ) -> User | UserAlreadyExistsError | RoleNotFoundError | OrganizationNotFoundError:
-        result = await self.postgres_session.execute(select(RoleTable.id).where(RoleTable.id == role_id))
-        try:
-            result.scalar_one()
-        except NoResultFound:
-            return RoleNotFoundError(id=role_id)
-
-        if organization_id is not None:
-            result = await self.postgres_session.execute(select(OrganizationTable.id).where(OrganizationTable.id == organization_id))
-            try:
-                result.scalar_one()
-            except NoResultFound:
-                return OrganizationNotFoundError(id=organization_id)
-
-        hashed_password = bcrypt.hashpw(password.encode("utf-8"), bcrypt.gensalt()).decode("utf-8")
+        hashed_password = self._hash_password(password=password)
         expires_value = func.to_timestamp(expires) if expires is not None else None
 
         try:
-            async with self.postgres_session.begin_nested():
-                result = await self.postgres_session.execute(
-                    insert(UserTable)
-                    .values(
-                        email=email,
-                        name=name,
-                        password=hashed_password,
-                        sub=sub,
-                        iss=iss,
-                        role_id=role_id,
-                        organization_id=organization_id,
-                        budget=budget,
-                        expires=expires_value,
-                        priority=priority,
-                    )
-                    .returning(
-                        UserTable.id,
-                        UserTable.email,
-                        UserTable.name,
-                        UserTable.sub,
-                        UserTable.iss,
-                        UserTable.role_id.label("role"),
-                        UserTable.organization_id.label("organization"),
-                        UserTable.budget,
-                        _unix_timestamp(UserTable.expires).label("expires"),
-                        _unix_timestamp(UserTable.created).label("created"),
-                        _unix_timestamp(UserTable.updated).label("updated"),
-                        UserTable.priority,
-                    )
+            result = await self.postgres_session.execute(
+                insert(UserTable)
+                .values(
+                    email=email,
+                    name=name,
+                    password=hashed_password,
+                    sub=sub,
+                    iss=iss,
+                    role_id=role_id,
+                    organization_id=organization_id,
+                    budget=budget,
+                    expires=expires_value,
+                    priority=priority,
                 )
-                row = result.one()
-        except IntegrityError:
+                .returning(
+                    UserTable.id,
+                    UserTable.email,
+                    UserTable.name,
+                    UserTable.sub,
+                    UserTable.iss,
+                    UserTable.role_id.label("role"),
+                    UserTable.organization_id.label("organization"),
+                    UserTable.budget,
+                    _unix_timestamp(UserTable.expires).label("expires"),
+                    _unix_timestamp(UserTable.created).label("created"),
+                    _unix_timestamp(UserTable.updated).label("updated"),
+                    UserTable.priority,
+                )
+            )
+            row = result.one()
+        except IntegrityError as e:
+            if "user_organization_id_fkey" in str(e.orig):
+                return OrganizationNotFoundError(id=organization_id)
+            if "user_role_id_fkey" in str(e.orig):
+                return RoleNotFoundError(id=role_id)
             return UserAlreadyExistsError(email=email)
 
         return self._row_to_user(row)
diff --git a/api/tests/integration/endpoints/admin/users/__init__.py b/api/tests/integration/endpoints/admin/users/__init__.py
diff --git a/api/tests/integration/endpoints/admin/users/test_create_user.py b/api/tests/integration/endpoints/admin/users/test_create_user.py
@@ -0,0 +1,101 @@
+from unittest.mock import AsyncMock
+
+from httpx import AsyncClient
+import pytest
+import pytest_asyncio
+
+from api.dependencies import create_user_use_case_factory
+from api.domain.organization.errors import OrganizationNotFoundError
+from api.domain.role.errors import RoleNotFoundError
+from api.domain.user.errors import UserAlreadyExistsError, UserIsNotAdminError
+from api.tests.helpers import create_key
+from api.tests.integration.factories.sql import RoleSQLFactory, UserSQLFactory
+from api.utils.variables import EndpointRoute
+
+URL = f"/v1{EndpointRoute.ADMIN_USERS}"
+
+
+def _valid_body(role_id: int, **overrides) -> dict:
+    body = {
+        "email": "newuser@test.com",
+        "password": "s3cr3t",
+        "role": role_id,
+    }
+    body.update(overrides)
+    return body
+
+
+@pytest.mark.asyncio(loop_scope="session")
+class TestCreateUser:
+    @pytest_asyncio.fixture(autouse=True)
+    async def setup(self, db_session):
+        self.admin_user = UserSQLFactory(admin_user=True)
+        self.token = await create_key(db_session, name="admin_token", user=self.admin_user)
+
+    async def test_happy_path(self, client: AsyncClient, db_session):
+        role = RoleSQLFactory()
+        await db_session.flush()
+
+        response = await client.post(
+            url=URL,
+            headers={"Authorization": f"Bearer {self.token.token}"},
+            json=_valid_body(role_id=role.id),
+        )
+
+        assert response.status_code == 201, response.text
+        data = response.json()
+        assert data["email"] == "newuser@test.com"
+        assert isinstance(data["id"], int)
+        assert data["role"] == role.id
+
+    @pytest.mark.parametrize(
+        "use_case_result,expected_status,expected_detail",
+        [
+            (
+                UserAlreadyExistsError(email="existing@test.com"),
+                409,
+                "User existing@test.com already exists.",
+            ),
+            (
+                RoleNotFoundError(id=99),
+                404,
+                "Role 99 not found.",
+            ),
+            (
+                OrganizationNotFoundError(id=99),
+                404,
+                "Organization 99 not found.",
+            ),
+            (
+                UserIsNotAdminError(),
+                403,
+                "User has no admin rights.",
+            ),
+        ],
+    )
+    async def test_error_maps_to_correct_http_status(self, client: AsyncClient, app, use_case_result, expected_status, expected_detail):
+        mock_use_case = AsyncMock()
+        mock_use_case.execute.return_value = use_case_result
+        app.dependency_overrides[create_user_use_case_factory] = lambda: mock_use_case
+
+        response = await client.post(
+            url=URL,
+            headers={"Authorization": f"Bearer {self.token.token}"},
+            json=_valid_body(role_id=1),
+        )
+
+        assert response.status_code == expected_status
+        assert response.json().get("detail") == expected_detail
+
+    @pytest.mark.parametrize(
+        "headers,expected_status,expected_detail",
+        [
+            ({}, 401, "Not authenticated"),
+            ({"Authorization": "Bearer invalid-token"}, 401, "Invalid API key."),
+        ],
+    )
+    async def test_auth(self, client: AsyncClient, headers, expected_status, expected_detail):
+        response = await client.post(url=URL, headers=headers, json=_valid_body(role_id=1))
+
+        assert response.status_code == expected_status
+        assert response.json().get("detail") == expected_detail
diff --git a/api/tests/integration/postgres/test_postgresproviderrepository.py b/api/tests/integration/postgres/test_postgresproviderrepository.py
@@ -298,8 +298,7 @@ async def test_update_provider_should_persist_all_updatable_fields(self, reposit
 
         # Act
         result = await repository.update_provider(
-            domain_provider
-            .with_router_id(router_2.id)
+            domain_provider.with_router_id(router_2.id)
             .with_timeout(120)
             .with_model_hosting_zone(HostingZone.USA)
             .with_model_total_params(2_000_000)
diff --git a/api/tests/integration/postgres/user_repository/__init__.py b/api/tests/integration/postgres/user_repository/__init__.py
diff --git a/api/tests/integration/postgres/user_repository/test_postgresusersrepository.py b/api/tests/integration/postgres/user_repository/test_postgresusersrepository.py
diff --git a/api/tests/unit/infrastructure/fastapi/test_access.py b/api/tests/unit/infrastructure/fastapi/test_access.py
@@ -53,9 +53,7 @@ async def test_should_raise_invalid_authentication_scheme_when_scheme_is_not_bea
         key_repository.get_key_expiration.assert_not_awaited()
 
     @pytest.mark.asyncio
-    async def test_should_raise_invalid_api_key_when_credentials_are_empty(
-        self, request_obj: Mock, key_repository: AsyncMock, request_context: Mock
-    ):
+    async def test_should_raise_invalid_api_key_when_credentials_are_empty(self, request_obj: Mock, key_repository: AsyncMock, request_context: Mock):
         # Arrange
         api_key = HTTPAuthorizationCredentials(scheme="Bearer", credentials="")
 
diff --git a/api/tests/unit/use_case/admin/routers/test_updaterouterusecase.py b/api/tests/unit/use_case/admin/routers/test_updaterouterusecase.py
@@ -53,8 +53,7 @@ async def test_should_return_updated_router_when_user_is_admin_and_router_exists
     ):
         # Arrange
         updated_router = (
-            sample_router
-            .with_name("new-name")
+            sample_router.with_name("new-name")
             .with_type(RouterType.TEXT_EMBEDDINGS_INFERENCE)
             .with_load_balancing_strategy(RouterLoadBalancingStrategy.LEAST_BUSY)
             .with_cost_prompt_tokens(0.005)
diff --git a/api/use_cases/admin/_bootstrapadminusecase.py b/api/use_cases/admin/_bootstrapadminusecase.py
@@ -51,7 +51,6 @@ def __init__(
         self.user_repository = user_repository
 
     async def execute(self, command: BootstrapAdminCommand) -> BootstrapAdminUseCaseResult:
-
         result = await self.user_repository.get_first_admin_user()
         match result:
             case User() as user:
diff --git a/api/use_cases/admin/providers/_createproviderusecase.py b/api/use_cases/admin/providers/_createproviderusecase.py
@@ -59,7 +59,6 @@ def __init__(
         self.user_with_role_query = user_with_role_query
 
     async def execute(self, command: CreateProviderCommand) -> CreateProviderUseCaseResult:
-
         user = await self.user_with_role_query.get_user_with_role_by_id(user_id=command.user_id)
 
         if user.expires is not None and user.expires < time.time():
diff --git a/api/use_cases/admin/routers/_getroutersusecase.py b/api/use_cases/admin/routers/_getroutersusecase.py
diff --git a/scripts/docs/generate_configuration_documentation.py b/scripts/docs/generate_configuration_documentation.py

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-{"schemaVersion":1,"label":"coverage","message":"56.24%","color":"red"}`
	`1`	`+{"schemaVersion":1,"label":"coverage","message":"56.29%","color":"red"}`