2adbcd0535
- Implemented comprehensive multi-tenant data isolation using database-level security - Built JWT authentication system with role-based access control (Super Admin, Org Admin, User, Viewer) - Created RESTful API endpoints for user and organization operations - Added complete audit logging for all data modifications with IP tracking - Implemented API rate limiting and input validation with security middleware - Built webhook processing engine with async event handling and retry logic - Created external API call handlers with circuit breaker pattern and error handling - Implemented data synchronization between external services and internal data - Added integration health monitoring and status tracking - Created three mock external services (User Management, Payment, Communication) - Implemented idempotency for webhook processing to handle duplicates gracefully - Added comprehensive security headers and XSS/CSRF protection - Set up Alembic database migrations with proper SQLite configuration - Included extensive documentation and API examples Architecture features: - Multi-tenant isolation at database level - Circuit breaker pattern for external API resilience - Async background task processing - Complete audit trail with user context - Role-based permission system - Webhook signature verification - Request validation and sanitization - Health monitoring endpoints Co-Authored-By: Claude <noreply@anthropic.com>
41 lines
1.2 KiB
Python
41 lines
1.2 KiB
Python
from pydantic_settings import BaseSettings
|
|
from typing import List
|
|
from pathlib import Path
|
|
|
|
|
|
class Settings(BaseSettings):
|
|
PROJECT_NAME: str = "Multi-Tenant SaaS Platform"
|
|
PROJECT_VERSION: str = "1.0.0"
|
|
API_V1_STR: str = "/api/v1"
|
|
|
|
SECRET_KEY: str = "your-secret-key-change-in-production"
|
|
ACCESS_TOKEN_EXPIRE_MINUTES: int = 30
|
|
ALGORITHM: str = "HS256"
|
|
|
|
DB_DIR: Path = Path("/app/storage/db")
|
|
SQLALCHEMY_DATABASE_URL: str = f"sqlite:///{DB_DIR}/db.sqlite"
|
|
|
|
CORS_ORIGINS: List[str] = ["*"]
|
|
|
|
REDIS_URL: str = "redis://localhost:6379/0"
|
|
CELERY_BROKER_URL: str = "redis://localhost:6379/0"
|
|
CELERY_RESULT_BACKEND: str = "redis://localhost:6379/0"
|
|
|
|
RATE_LIMIT_REQUESTS: int = 100
|
|
RATE_LIMIT_WINDOW: int = 60
|
|
|
|
WEBHOOK_SECRET: str = "webhook-secret-key"
|
|
|
|
EXTERNAL_USER_SERVICE_URL: str = "http://localhost:8001"
|
|
EXTERNAL_PAYMENT_SERVICE_URL: str = "http://localhost:8002"
|
|
EXTERNAL_COMMUNICATION_SERVICE_URL: str = "http://localhost:8003"
|
|
|
|
CIRCUIT_BREAKER_FAILURE_THRESHOLD: int = 5
|
|
CIRCUIT_BREAKER_TIMEOUT: int = 60
|
|
|
|
class Config:
|
|
env_file = ".env"
|
|
case_sensitive = True
|
|
|
|
|
|
settings = Settings() |