433 lines
17 KiB
Python
433 lines
17 KiB
Python
from __future__ import annotations
|
|
|
|
import logging
|
|
from datetime import datetime, timedelta, timezone
|
|
from typing import TYPE_CHECKING, cast
|
|
|
|
from fastapi import Request, Response, status
|
|
from fastapi.responses import JSONResponse
|
|
from starlette.middleware.base import BaseHTTPMiddleware, RequestResponseEndpoint
|
|
|
|
import settings
|
|
from trading_journal import crud, security
|
|
from trading_journal.dto import (
|
|
CycleBase,
|
|
CycleCreate,
|
|
CycleLoanChangeEventBase,
|
|
CycleRead,
|
|
CycleUpdate,
|
|
ExchangesBase,
|
|
ExchangesCreate,
|
|
ExchangesRead,
|
|
SessionsCreate,
|
|
SessionsUpdate,
|
|
TradeCreate,
|
|
TradeRead,
|
|
UserCreate,
|
|
UserLogin,
|
|
UserRead,
|
|
)
|
|
from trading_journal.service_error import (
|
|
CycleLoanEventExistsError,
|
|
CycleNotFoundError,
|
|
ExchangeAlreadyExistsError,
|
|
ExchangeNotFoundError,
|
|
InvalidCycleDataError,
|
|
InvalidTradeDataError,
|
|
ServiceError,
|
|
TradeNotFoundError,
|
|
UserAlreadyExistsError,
|
|
)
|
|
|
|
if TYPE_CHECKING:
|
|
from sqlmodel import Session
|
|
|
|
from trading_journal.db import Database
|
|
from trading_journal.models import Sessions
|
|
|
|
|
|
EXCEPT_PATHS = [
|
|
f"{settings.settings.api_base}/status",
|
|
f"{settings.settings.api_base}/register",
|
|
f"{settings.settings.api_base}/login",
|
|
]
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
class AuthMiddleWare(BaseHTTPMiddleware):
|
|
async def dispatch(self, request: Request, call_next: RequestResponseEndpoint) -> Response: # noqa: PLR0911
|
|
if request.url.path in EXCEPT_PATHS:
|
|
return await call_next(request)
|
|
|
|
token = request.cookies.get("session_token")
|
|
if not token:
|
|
auth_header = request.headers.get("Authorization")
|
|
if auth_header and auth_header.startswith("Bearer "):
|
|
token = auth_header[len("Bearer ") :]
|
|
|
|
if not token:
|
|
return JSONResponse(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
content={"detail": "Unauthorized"},
|
|
)
|
|
|
|
db_factory: Database | None = getattr(request.app.state, "db_factory", None)
|
|
if db_factory is None:
|
|
return JSONResponse(
|
|
status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
|
|
content={"detail": "db factory not configured"},
|
|
)
|
|
try:
|
|
with db_factory.get_session_ctx_manager() as request_session:
|
|
hashed_token = security.hash_session_token_sha256(token)
|
|
request.state.db_session = request_session
|
|
login_session: Sessions | None = crud.get_login_session_by_token_hash(request_session, hashed_token)
|
|
if not login_session:
|
|
return JSONResponse(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
content={"detail": "Unauthorized"},
|
|
)
|
|
session_expires_utc = login_session.expires_at.replace(tzinfo=timezone.utc)
|
|
if session_expires_utc < datetime.now(timezone.utc):
|
|
crud.delete_login_session(request_session, login_session.session_token_hash)
|
|
return JSONResponse(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
content={"detail": "Unauthorized"},
|
|
)
|
|
if login_session.user.is_active is False:
|
|
return JSONResponse(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
content={"detail": "Unauthorized"},
|
|
)
|
|
if session_expires_utc - datetime.now(timezone.utc) < timedelta(seconds=3600):
|
|
updated_expiry = datetime.now(timezone.utc) + timedelta(seconds=settings.settings.session_expiry_seconds)
|
|
else:
|
|
updated_expiry = session_expires_utc
|
|
updated_session: SessionsUpdate = SessionsUpdate(
|
|
last_seen_at=datetime.now(timezone.utc),
|
|
last_used_ip=request.client.host if request.client else None,
|
|
user_agent=request.headers.get("User-Agent"),
|
|
expires_at=updated_expiry,
|
|
)
|
|
user_id = login_session.user_id
|
|
request.state.user_id = user_id
|
|
crud.update_login_session(request_session, hashed_token, update_session=updated_session)
|
|
except Exception:
|
|
logger.exception("Failed to authenticate user: \n")
|
|
return JSONResponse(
|
|
status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
|
|
content={"detail": "Internal server error"},
|
|
)
|
|
|
|
return await call_next(request)
|
|
|
|
|
|
# User service
|
|
def register_user_service(db_session: Session, user_in: UserCreate) -> UserRead:
|
|
if crud.get_user_by_username(db_session, user_in.username):
|
|
raise UserAlreadyExistsError("username already exists")
|
|
hashed = security.hash_password(user_in.password)
|
|
user_data: dict = {
|
|
"username": user_in.username,
|
|
"password_hash": hashed,
|
|
}
|
|
try:
|
|
user = crud.create_user(db_session, user_data=user_data)
|
|
try:
|
|
# prefer pydantic's from_orm if DTO supports orm_mode
|
|
user = UserRead.model_validate(user)
|
|
except Exception as e:
|
|
logger.exception("Failed to convert user to UserRead: ")
|
|
raise ServiceError("Failed to convert user to UserRead") from e
|
|
except Exception as e:
|
|
logger.exception("Failed to create user:")
|
|
raise ServiceError("Failed to create user") from e
|
|
return user
|
|
|
|
|
|
def authenticate_user_service(db_session: Session, user_in: UserLogin) -> tuple[SessionsCreate, str] | None:
|
|
user = crud.get_user_by_username(db_session, user_in.username)
|
|
if not user:
|
|
return None
|
|
user_id_val = cast("int", user.id)
|
|
|
|
if not security.verify_password(user_in.password, user.password_hash):
|
|
return None
|
|
|
|
token = security.generate_session_token()
|
|
token_hashed = security.hash_session_token_sha256(token)
|
|
try:
|
|
session = crud.create_login_session(
|
|
session=db_session,
|
|
user_id=user_id_val,
|
|
session_token_hash=token_hashed,
|
|
session_length_seconds=settings.settings.session_expiry_seconds,
|
|
)
|
|
except Exception as e:
|
|
logger.exception("Failed to create login session: \n")
|
|
raise ServiceError("Failed to create login session") from e
|
|
return SessionsCreate.model_validate(session), token
|
|
|
|
|
|
# Exchanges service
|
|
def create_exchange_service(db_session: Session, user_id: int, name: str, notes: str | None) -> ExchangesCreate:
|
|
existing_exchange = crud.get_exchange_by_name_and_user_id(db_session, name, user_id)
|
|
if existing_exchange:
|
|
raise ExchangeAlreadyExistsError("Exchange with the same name already exists for this user")
|
|
exchange_data = ExchangesCreate(
|
|
user_id=user_id,
|
|
name=name,
|
|
notes=notes,
|
|
)
|
|
try:
|
|
exchange = crud.create_exchange(db_session, exchange_data=exchange_data)
|
|
try:
|
|
exchange_dto = ExchangesCreate.model_validate(exchange)
|
|
except Exception as e:
|
|
logger.exception("Failed to convert exchange to ExchangesCreate:")
|
|
raise ServiceError("Failed to convert exchange to ExchangesCreate") from e
|
|
except Exception as e:
|
|
logger.exception("Failed to create exchange:")
|
|
raise ServiceError("Failed to create exchange") from e
|
|
return exchange_dto
|
|
|
|
|
|
def get_exchanges_by_user_service(db_session: Session, user_id: int) -> list[ExchangesRead]:
|
|
exchanges = crud.get_all_exchanges_by_user_id(db_session, user_id)
|
|
return [ExchangesRead.model_validate(exchange) for exchange in exchanges]
|
|
|
|
|
|
def update_exchanges_service(
|
|
db_session: Session,
|
|
user_id: int,
|
|
exchange_id: int,
|
|
name: str | None,
|
|
notes: str | None,
|
|
) -> ExchangesBase:
|
|
existing_exchange = crud.get_exchange_by_id(db_session, exchange_id)
|
|
if not existing_exchange:
|
|
raise ExchangeNotFoundError("Exchange not found")
|
|
if existing_exchange.user_id != user_id:
|
|
raise ExchangeNotFoundError("Exchange not found")
|
|
|
|
if name:
|
|
other_exchange = crud.get_exchange_by_name_and_user_id(db_session, name, user_id)
|
|
if other_exchange and other_exchange.id != existing_exchange.id:
|
|
raise ExchangeAlreadyExistsError("Another exchange with the same name already exists for this user")
|
|
|
|
exchange_data = ExchangesBase(
|
|
name=name or existing_exchange.name,
|
|
notes=notes or existing_exchange.notes,
|
|
)
|
|
try:
|
|
exchange = crud.update_exchange(db_session, cast("int", existing_exchange.id), update_data=exchange_data)
|
|
except Exception as e:
|
|
logger.exception("Failed to update exchange: \n")
|
|
raise ServiceError("Failed to update exchange") from e
|
|
return ExchangesBase.model_validate(exchange)
|
|
|
|
|
|
# Cycle Service
|
|
def create_cycle_service(db_session: Session, user_id: int, cycle_data: CycleBase) -> CycleRead:
|
|
raise NotImplementedError("Cycle creation not implemented")
|
|
cycle_data_dict = cycle_data.model_dump()
|
|
cycle_data_dict["user_id"] = user_id
|
|
cycle_data_with_user_id: CycleCreate = CycleCreate.model_validate(cycle_data_dict)
|
|
created_cycle = crud.create_cycle(db_session, cycle_data=cycle_data_with_user_id)
|
|
return CycleRead.model_validate(created_cycle)
|
|
|
|
|
|
def get_cycle_by_id_service(db_session: Session, user_id: int, cycle_id: int) -> CycleRead:
|
|
cycle = crud.get_cycle_by_id(db_session, cycle_id)
|
|
if not cycle:
|
|
raise CycleNotFoundError("Cycle not found")
|
|
if cycle.user_id != user_id:
|
|
raise CycleNotFoundError("Cycle not found")
|
|
return CycleRead.model_validate(cycle)
|
|
|
|
|
|
def get_cycles_by_user_service(db_session: Session, user_id: int) -> list[CycleRead]:
|
|
cycles = crud.get_cycles_by_user_id(db_session, user_id)
|
|
return [CycleRead.model_validate(cycle) for cycle in cycles]
|
|
|
|
|
|
def _validate_cycle_update_data(cycle_data: CycleUpdate) -> tuple[bool, str]: # noqa: PLR0911
|
|
if cycle_data.status == "CLOSED" and cycle_data.end_date is None:
|
|
return False, "end_date is required when status is CLOSED"
|
|
if cycle_data.status == "OPEN" and cycle_data.end_date is not None:
|
|
return False, "end_date must be empty when status is OPEN"
|
|
if cycle_data.capital_exposure_cents is not None and cycle_data.capital_exposure_cents < 0:
|
|
return False, "capital_exposure_cents must be non-negative"
|
|
if (
|
|
cycle_data.funding_source is not None
|
|
and cycle_data.funding_source != "CASH"
|
|
and (cycle_data.loan_amount_cents is None or cycle_data.loan_interest_rate_tenth_bps is None)
|
|
):
|
|
return (
|
|
False,
|
|
"loan_amount_cents and loan_interest_rate_tenth_bps are required when funding_source is not CASH",
|
|
)
|
|
if cycle_data.loan_amount_cents is not None and cycle_data.loan_amount_cents < 0:
|
|
return False, "loan_amount_cents must be non-negative"
|
|
if cycle_data.loan_interest_rate_tenth_bps is not None and cycle_data.loan_interest_rate_tenth_bps < 0:
|
|
return False, "loan_interest_rate_tenth_bps must be non-negative"
|
|
return True, ""
|
|
|
|
|
|
def _create_cycle_loan_event(
|
|
db_session: Session,
|
|
cycle_id: int,
|
|
loan_amount_cents: int | None,
|
|
loan_interest_rate_tenth_bps: int | None,
|
|
) -> None:
|
|
now = datetime.now(timezone.utc)
|
|
today = now.date()
|
|
existing_loan_event = crud.get_loan_event_by_cycle_id_and_effective_date(db_session, cycle_id, today)
|
|
if existing_loan_event:
|
|
raise CycleLoanEventExistsError("A loan event with the same effective_date already exists for this cycle.")
|
|
loan_event_data = CycleLoanChangeEventBase(
|
|
cycle_id=cycle_id,
|
|
effective_date=today,
|
|
loan_amount_cents=loan_amount_cents,
|
|
loan_interest_rate_tenth_bps=loan_interest_rate_tenth_bps,
|
|
created_at=now,
|
|
)
|
|
try:
|
|
crud.create_cycle_loan_event(db_session, loan_event_data)
|
|
except Exception as e:
|
|
logger.exception("Failed to create cycle loan event: \n")
|
|
raise ServiceError("Failed to create cycle loan event") from e
|
|
|
|
|
|
def update_cycle_service(db_session: Session, user_id: int, cycle_data: CycleUpdate) -> CycleRead:
|
|
is_valid, err_msg = _validate_cycle_update_data(cycle_data)
|
|
if not is_valid:
|
|
raise InvalidCycleDataError(err_msg)
|
|
cycle_id = cast("int", cycle_data.id)
|
|
existing_cycle = crud.get_cycle_by_id(db_session, cycle_id)
|
|
if not existing_cycle:
|
|
raise CycleNotFoundError("Cycle not found")
|
|
if existing_cycle.user_id != user_id:
|
|
raise CycleNotFoundError("Cycle not found")
|
|
if cycle_data.loan_amount_cents is not None or cycle_data.loan_interest_rate_tenth_bps is not None:
|
|
_create_cycle_loan_event(
|
|
db_session,
|
|
cycle_id,
|
|
cycle_data.loan_amount_cents,
|
|
cycle_data.loan_interest_rate_tenth_bps,
|
|
)
|
|
|
|
provided_data_dict = cycle_data.model_dump(exclude_unset=True)
|
|
cycle_data_with_user_id: CycleBase = CycleBase.model_validate(provided_data_dict)
|
|
|
|
try:
|
|
updated_cycle = crud.update_cycle(db_session, cycle_id, update_data=cycle_data_with_user_id)
|
|
except Exception as e:
|
|
logger.exception("Failed to update cycle: \n")
|
|
raise ServiceError("Failed to update cycle") from e
|
|
return CycleRead.model_validate(updated_cycle)
|
|
|
|
|
|
def accrual_interest_service(db_session: Session, cycle_id: int) -> None:
|
|
cycle = crud.get_cycle_by_id(db_session, cycle_id)
|
|
if not cycle:
|
|
logger.exception("Cycle not found for interest accrual")
|
|
raise CycleNotFoundError("Cycle not found")
|
|
if cycle.loan_amount_cents is None or cycle.loan_interest_rate_tenth_bps is None:
|
|
logger.info("Cycle has no loan, skipping interest accrual")
|
|
return
|
|
today = datetime.now(timezone.utc).date()
|
|
amount_cents = round(cycle.loan_amount_cents * cycle.loan_interest_rate_tenth_bps / 100000 / 365)
|
|
try:
|
|
crud.create_cycle_daily_accrual(
|
|
db_session,
|
|
cycle_id=cycle_id,
|
|
accrual_date=today,
|
|
accrual_amount_cents=amount_cents,
|
|
)
|
|
except Exception as e:
|
|
logger.exception("Failed to create cycle interest accrual: \n")
|
|
raise ServiceError("Failed to create cycle interest accrual") from e
|
|
|
|
|
|
def flush_interest_accruals_service(db_session: Session) -> None:
|
|
pass
|
|
|
|
|
|
# Trades service
|
|
def _append_cashflows(trade_data: TradeCreate) -> TradeCreate:
|
|
sign_multipler: int
|
|
if trade_data.trade_type in (
|
|
"SELL_PUT",
|
|
"SELL_CALL",
|
|
"EXERCISE_CALL",
|
|
"CLOSE_LONG_SPOT",
|
|
"SHORT_SPOT",
|
|
):
|
|
sign_multipler = 1
|
|
else:
|
|
sign_multipler = -1
|
|
quantity = trade_data.quantity * trade_data.quantity_multiplier
|
|
gross_cash_flow_cents = quantity * trade_data.price_cents * sign_multipler
|
|
net_cash_flow_cents = gross_cash_flow_cents - trade_data.commission_cents
|
|
trade_data.gross_cash_flow_cents = gross_cash_flow_cents
|
|
trade_data.net_cash_flow_cents = net_cash_flow_cents
|
|
return trade_data
|
|
|
|
|
|
def _validate_trade_data(trade_data: TradeCreate) -> bool:
|
|
return not (
|
|
trade_data.trade_type in ("SELL_PUT", "SELL_CALL") and (trade_data.expiry_date is None or trade_data.strike_price_cents is None)
|
|
)
|
|
|
|
|
|
def create_trade_service(db_session: Session, user_id: int, trade_data: TradeCreate) -> TradeRead:
|
|
if not _validate_trade_data(trade_data):
|
|
raise InvalidTradeDataError("Invalid trade data: expiry_date and strike_price_cents are required for SELL_PUT and SELL_CALL trades")
|
|
trade_data_dict = trade_data.model_dump()
|
|
trade_data_dict["user_id"] = user_id
|
|
trade_data_with_user_id: TradeCreate = TradeCreate.model_validate(trade_data_dict)
|
|
trade_data_with_user_id = _append_cashflows(trade_data_with_user_id)
|
|
created_trade = crud.create_trade(db_session, trade_data=trade_data_with_user_id)
|
|
return TradeRead.model_validate(created_trade)
|
|
|
|
|
|
def get_trade_by_id_service(db_session: Session, user_id: int, trade_id: int) -> TradeRead:
|
|
trade = crud.get_trade_by_id(db_session, trade_id)
|
|
if not trade:
|
|
raise TradeNotFoundError("Trade not found")
|
|
if trade.user_id != user_id:
|
|
raise TradeNotFoundError("Trade not found")
|
|
return TradeRead.model_validate(trade)
|
|
|
|
|
|
def update_trade_friendly_name_service(db_session: Session, user_id: int, trade_id: int, friendly_name: str) -> TradeRead:
|
|
existing_trade = crud.get_trade_by_id(db_session, trade_id)
|
|
if not existing_trade:
|
|
raise TradeNotFoundError("Trade not found")
|
|
if existing_trade.user_id != user_id:
|
|
raise TradeNotFoundError("Trade not found")
|
|
try:
|
|
updated_trade = crud.update_trade_friendly_name(db_session, trade_id, friendly_name)
|
|
except Exception as e:
|
|
logger.exception("Failed to update trade friendly name: \n")
|
|
raise ServiceError("Failed to update trade friendly name") from e
|
|
return TradeRead.model_validate(updated_trade)
|
|
|
|
|
|
def update_trade_note_service(db_session: Session, user_id: int, trade_id: int, note: str | None) -> TradeRead:
|
|
existing_trade = crud.get_trade_by_id(db_session, trade_id)
|
|
if not existing_trade:
|
|
raise TradeNotFoundError("Trade not found")
|
|
if existing_trade.user_id != user_id:
|
|
raise TradeNotFoundError("Trade not found")
|
|
if note is None:
|
|
note = ""
|
|
try:
|
|
updated_trade = crud.update_trade_note(db_session, trade_id, note)
|
|
except Exception as e:
|
|
logger.exception("Failed to update trade notes: \n")
|
|
raise ServiceError("Failed to update trade notes") from e
|
|
return TradeRead.model_validate(updated_trade)
|