[PR #432] Use shared multi-tenant get_db dependency across content-strategy endpoints #737

New issue

Open

opened 2026-03-13 21:06:36 +03:00 by kerem · 0 comments

kerem commented 2026-03-13 21:06:36 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/AJaySi/ALwrity/pull/432
Author: @AJaySi
Created: 3/12/2026
Status: 🔄 Open

Base: main ← Head: codex/refactor-db-access-in-content-strategy

---

📝 Commits (1)

• a9252ed Use shared multi-tenant DB dependency in strategy endpoints

📊 Changes

6 files changed (+168 additions, -47 deletions)

View changed files

📝 backend/api/content_planning/api/content_strategy/endpoints/ai_generation_endpoints.py (+7 -9)
📝 backend/api/content_planning/api/content_strategy/endpoints/analytics_endpoints.py (+2 -10)
📝 backend/api/content_planning/api/content_strategy/endpoints/autofill_endpoints.py (+7 -9)
📝 backend/api/content_planning/api/content_strategy/endpoints/streaming_endpoints.py (+1 -9)
📝 backend/api/content_planning/api/content_strategy/endpoints/utility_endpoints.py (+2 -10)
➕ backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py (+149 -0)

📄 Description

Motivation

• Endpoint-local get_db() helpers called get_db_session() without an authenticated user, which returns None in multi-tenant mode and can break DB access.
• Centralized, tenant-aware DB session lifecycle is provided by services.database.get_db, so endpoints should rely on that shared dependency.
• Routes that access the DB must run in an authenticated user context so the shared get_db can resolve a tenant-specific engine/session.

Description

• Removed local get_db() wrappers that used get_db_session() from the following modules and switched them to import get_db from services.database: utility_endpoints.py, analytics_endpoints.py, autofill_endpoints.py, streaming_endpoints.py, and ai_generation_endpoints.py.
• Added Depends(get_current_user) to DB-backed routes that previously lacked explicit authentication parameters so tenant context is available to get_db (notably in autofill_endpoints and core AI generation routes).
• Eliminated local db.close() handling in endpoint-local wrappers by relying on the shared get_db dependency to manage session lifecycle.
• Added regression tests backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py that override get_db and auth dependencies and assert that injected/fake services receive a non-null DB session for one representative endpoint per modified module.

Testing

• Ran the new test file with pytest -q backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py and verified all tests passed: 5 passed.
• Tests instantiate a FastAPI TestClient, override get_db with a FakeDBSession, override auth dependencies, and monkeypatch endpoint services to assert db is non-null and responses return a successful status.

---

Codex Task

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/AJaySi/ALwrity/pull/432 **Author:** [@AJaySi](https://github.com/AJaySi) **Created:** 3/12/2026 **Status:** 🔄 Open **Base:** `main` ← **Head:** `codex/refactor-db-access-in-content-strategy` --- ### 📝 Commits (1) - [`a9252ed`](https://github.com/AJaySi/ALwrity/commit/a9252edc18605f1544773b5f0964da18d7eb530f) Use shared multi-tenant DB dependency in strategy endpoints ### 📊 Changes **6 files changed** (+168 additions, -47 deletions) <details> <summary>View changed files</summary> 📝 `backend/api/content_planning/api/content_strategy/endpoints/ai_generation_endpoints.py` (+7 -9) 📝 `backend/api/content_planning/api/content_strategy/endpoints/analytics_endpoints.py` (+2 -10) 📝 `backend/api/content_planning/api/content_strategy/endpoints/autofill_endpoints.py` (+7 -9) 📝 `backend/api/content_planning/api/content_strategy/endpoints/streaming_endpoints.py` (+1 -9) 📝 `backend/api/content_planning/api/content_strategy/endpoints/utility_endpoints.py` (+2 -10) ➕ `backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py` (+149 -0) </details> ### 📄 Description ### Motivation - Endpoint-local `get_db()` helpers called `get_db_session()` without an authenticated user, which returns `None` in multi-tenant mode and can break DB access. - Centralized, tenant-aware DB session lifecycle is provided by `services.database.get_db`, so endpoints should rely on that shared dependency. - Routes that access the DB must run in an authenticated user context so the shared `get_db` can resolve a tenant-specific engine/session. ### Description - Removed local `get_db()` wrappers that used `get_db_session()` from the following modules and switched them to import `get_db` from `services.database`: `utility_endpoints.py`, `analytics_endpoints.py`, `autofill_endpoints.py`, `streaming_endpoints.py`, and `ai_generation_endpoints.py`. - Added `Depends(get_current_user)` to DB-backed routes that previously lacked explicit authentication parameters so tenant context is available to `get_db` (notably in `autofill_endpoints` and core AI generation routes). - Eliminated local `db.close()` handling in endpoint-local wrappers by relying on the shared `get_db` dependency to manage session lifecycle. - Added regression tests `backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py` that override `get_db` and auth dependencies and assert that injected/fake services receive a non-null DB session for one representative endpoint per modified module. ### Testing - Ran the new test file with `pytest -q backend/tests/api/content_planning/content_strategy/endpoints/test_shared_get_db_dependency.py` and verified all tests passed: `5 passed`. - Tests instantiate a `FastAPI` `TestClient`, override `get_db` with a `FakeDBSession`, override auth dependencies, and monkeypatch endpoint services to assert `db` is non-null and responses return a successful status. ------ [Codex Task](https://chatgpt.com/codex/tasks/task_e_69b287fabbec832880a09b2e414e1040) --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem added the

pull-request

label 2026-03-13 21:06:36 +03:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

codex/task-title-3y5pbt

codex/task-title-lsrpho

codex/task-title

codex/locate-and-render-brollinfopanel-component

codex/import-scene-composition-symbols-in-broll_service

codex/refactor-preview-generation-flow

codex/standardize-chart-preview-route-usage

codex/import-b-roll-handler-and-update-router

codex/implement-podcast-research-response-updates

codex/add-cost-estimation-feature-to-podcastdashboard

codex/remove-heuristic-calculators-and-update-estimates-bhvhnh

codex/remove-heuristic-calculators-and-update-estimates

codex/implement-dedicated-podcastcostest-model

codex/add-podcast-maker-feature-documentation

codex/review-flat-file-context-system-implementation

codex/create-podcast-maker-best-practices-documentation

codex/add-podcast-maker-journey-pages-for-personas

codex/refactor-podcast-maker-documentation-structure

dependabot/npm_and_yarn/frontend/npm_and_yarn-7d3393088f

codex/log-skipped-and-loaded-items

codex/create-startup-phases-for-podcast-demo-tugrzv

codex/create-startup-phases-for-podcast-demo

codex/add-api-feature-profile-status-endpoint

codex/refactor-routermanager-to-use-registry

codex/add-new-modules-for-feature-management

codex/downgrade-api-key-warning-logging

codex/refactor-onboarding-loading-logic

codex/add-ci-lint-check-for-user_id-patterns

codex/remove-sessionlocal-import-and-add-health-check

codex/refactor-dubbed_audio_dir-to-tenant-path-resolver

codex/update-task-metadata-and-api-responses

codex/verify-podcast-analysis-and-cost-tracking

codex/assert-api-endpoints-on-startup

codex/add-env-controlled-guard-for-stripe-key

codex/remove-feature-flag-for-production-demo

codex/add-mode-aware-redirect-logic-in-pricingpage

codex/document-deployment-configuration-for-demo-mode

codex/ensure-api.subscription.router-always-included

codex/guard-onboarding-manager-and-endpoints

codex/wrap-router-inclusion-in-demo-mode-check

codex/add-podcast-only-demo-mode-toggle

dependabot/npm_and_yarn/frontend/npm_and_yarn-f5ea90b336

codex/update-reset_current_billing_period-logic

codex/update-error-handling-in-monitoring-middleware

codex/move-stripe_plan_price_mapping-to-env-driven-config

codex/refactor-billingservice-to-use-authenticated-user

codex/update-user-access-verification-for-routes

session/agent_eae6711f-e04b-4d48-8d66-43ee051feb7b

v0.5.0

v0.3

v0.2

v0.1

Labels

Clear labels   

AI Content Agents

  

AI Content Strategy

  

AI Content planning

  

AI Marketing Tools

  

AI SEO

  

AI personalization

  

AI writer

  

ALwrity Copi-lot

  

Alwrity web search

  

Anthropic

  

DeepSeek

  

Gemini AI

  

Integration

  

LLM

  

OnBoarding

  

OnBoarding

  

RAG knowledgebase Memory

  

bug

  

documentation

  

enhancement

  

good first issue

  

help wanted

  

invalid

  

openai

  

pull-request

Mirrored from GitHub Pull Request

No labels

AI Content Agents

AI Content Strategy

AI Content planning

AI Marketing Tools

AI SEO

AI personalization

AI writer

ALwrity Copi-lot

Alwrity web search

Anthropic

DeepSeek

Gemini AI

Integration

LLM

OnBoarding

OnBoarding

RAG knowledgebase Memory

bug

documentation

enhancement

good first issue

help wanted

invalid

openai

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ALwrity#737

No description provided.