feat: Router changes to handle tenant id

KShivendu · KShivendu · commit 520a1601f2e4 · 2023-07-05T14:30:06.000+05:30
diff --git a/supertokens_python/recipe/dashboard/recipe.py b/supertokens_python/recipe/dashboard/recipe.py
@@ -13,11 +13,12 @@
 # under the License.
 from __future__ import annotations
 
+import re
 from os import environ
 from typing import TYPE_CHECKING, Awaitable, Callable, List, Optional, Union
 
 from supertokens_python.normalised_url_path import NormalisedURLPath
-from supertokens_python.recipe_module import APIHandled, RecipeModule
+from supertokens_python.recipe_module import APIHandled, RecipeModule, ApiIdWithTenantId
 
 from .api import (
     api_key_protector,
@@ -45,6 +46,7 @@
 from .exceptions import SuperTokensDashboardError
 from .interfaces import APIInterface, APIOptions
 from .recipe_implementation import RecipeImplementation
+from ..multitenancy.constants import DEFAULT_TENANT_ID
 
 if TYPE_CHECKING:
     from supertokens_python.framework.request import BaseRequest
@@ -126,6 +128,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
@@ -250,10 +253,42 @@ def return_api_id_if_can_handle_request(
             NormalisedURLPath(DASHBOARD_API)
         )
 
-        if is_api_path(path, self.app_info):
-            return get_api_if_matched(path, method)
+        base_path_str = self.app_info.api_base_path.get_as_string_dangerous()
+        path_str = path.get_as_string_dangerous()
+        regex = rf"^{base_path_str}(?:/([a-zA-Z0-9-]+))?(/.*)$"
+
+        match = re.match(regex, path_str)
+        tenant_id: str = DEFAULT_TENANT_ID
+        remaining_path: Optional[NormalisedURLPath] = None
+
+        if match is not None:
+            # TODO: Do something better than assert here
+            assert match.group(1) is not None
+            assert match.group(2) is not None
+
+            tenant_id = match.group(1)
+            remaining_path = NormalisedURLPath(match.group(2))
+
+        if is_api_path(path, self.app_info.api_base_path) or (
+            remaining_path is not None
+            and is_api_path(
+                path,
+                self.app_info.api_base_path.append(NormalisedURLPath(f"/{tenant_id}")),
+            )
+        ):
+            # check remainingPath first as path that contains tenantId might match as well
+            # since getApiIdIfMatched uses endsWith to match
+            if remaining_path is not None:
+                id_ = get_api_if_matched(remaining_path, method)
+                if id_ is not None:
+                    return ApiIdWithTenantId(id_, tenant_id)
+
+            id_ = get_api_if_matched(path, method)
+            if id_ is not None:
+                return ApiIdWithTenantId(id_, DEFAULT_TENANT_ID)
 
         if path.startswith(dashboard_bundle_path):
-            return DASHBOARD_API
+            return ApiIdWithTenantId(DASHBOARD_API, DEFAULT_TENANT_ID)
 
+        # tenantId is not supported for bundlePath, so not matching for it
         return None
diff --git a/supertokens_python/recipe/dashboard/utils.py b/supertokens_python/recipe/dashboard/utils.py
@@ -17,7 +17,6 @@
 
 if TYPE_CHECKING:
     from supertokens_python.framework.request import BaseRequest
-    from ...supertokens import AppInfo
 
 from supertokens_python.recipe.emailpassword import EmailPasswordRecipe
 from supertokens_python.recipe.emailpassword.asyncio import (
@@ -195,10 +194,8 @@ def validate_and_normalise_user_input(
     )
 
 
-def is_api_path(path: NormalisedURLPath, app_info: AppInfo) -> bool:
-    dashboard_recipe_base_path = app_info.api_base_path.append(
-        NormalisedURLPath(DASHBOARD_API)
-    )
+def is_api_path(path: NormalisedURLPath, base_path: NormalisedURLPath) -> bool:
+    dashboard_recipe_base_path = base_path.append(NormalisedURLPath(DASHBOARD_API))
 
     if not path.startswith(dashboard_recipe_base_path):
         return False
diff --git a/supertokens_python/recipe/emailpassword/recipe.py b/supertokens_python/recipe/emailpassword/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, Any, Dict, List, Union
+from typing import TYPE_CHECKING, Any, Dict, List, Union, Optional
 
 from supertokens_python.ingredients.emaildelivery import EmailDeliveryIngredient
 from supertokens_python.ingredients.emaildelivery.types import EmailDeliveryConfig
@@ -170,6 +170,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/emailverification/recipe.py b/supertokens_python/recipe/emailverification/recipe.py
@@ -165,6 +165,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/jwt/recipe.py b/supertokens_python/recipe/jwt/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, List, Union
+from typing import TYPE_CHECKING, List, Union, Optional
 
 from supertokens_python.querier import Querier
 from supertokens_python.recipe.jwt.api.implementation import APIImplementation
@@ -80,6 +80,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/multitenancy/constants.py b/supertokens_python/recipe/multitenancy/constants.py
@@ -12,4 +12,4 @@
 # License for the specific language governing permissions and limitations
 # under the License.
 LOGIN_METHODS = "/loginmethods"
-DEFAULT_TENANT_ID = "defaultTenantId"
+DEFAULT_TENANT_ID = "public"
diff --git a/supertokens_python/recipe/multitenancy/recipe.py b/supertokens_python/recipe/multitenancy/recipe.py
@@ -122,6 +122,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/openid/recipe.py b/supertokens_python/recipe/openid/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, List, Union
+from typing import TYPE_CHECKING, List, Union, Optional
 
 from supertokens_python.querier import Querier
 from supertokens_python.recipe.jwt import JWTRecipe
@@ -89,6 +89,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
@@ -107,7 +108,7 @@ async def handle_api_request(
                 self.api_implementation, options
             )
         return await self.jwt_recipe.handle_api_request(
-            request_id, request, path, method, response
+            request_id, tenant_id, request, path, method, response
         )
 
     async def handle_error(
diff --git a/supertokens_python/recipe/passwordless/recipe.py b/supertokens_python/recipe/passwordless/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, Any, Awaitable, Callable, Dict, List, Union
+from typing import TYPE_CHECKING, Any, Awaitable, Callable, Dict, List, Union, Optional
 
 from supertokens_python.ingredients.emaildelivery import EmailDeliveryIngredient
 from supertokens_python.ingredients.emaildelivery.types import EmailDeliveryConfig
@@ -185,6 +185,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/session/recipe.py b/supertokens_python/recipe/session/recipe.py
@@ -187,6 +187,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
@@ -215,7 +216,7 @@ async def handle_api_request(
                 ),
             )
         return await self.openid_recipe.handle_api_request(
-            request_id, request, path, method, response
+            request_id, tenant_id, request, path, method, response
         )
 
     async def handle_error(
diff --git a/supertokens_python/recipe/thirdparty/providers/bitbucket.py b/supertokens_python/recipe/thirdparty/providers/bitbucket.py
@@ -38,9 +38,9 @@ def __init__(
         authorisation_redirect: Union[
             None, Dict[str, Union[str, Callable[[BaseRequest], str]]]
         ] = None,
-        is_default: bool = False,
+        _is_default: bool = False,
     ):
-        super().__init__("bitbucket") # FIXME: Where should is_default go?
+        super().__init__("bitbucket")  # FIXME: Where should is_default go?
         self.client_id = client_id
         self.client_secret = client_secret
         self.scopes = ["account", "email"] if scope is None else list(set(scope))
diff --git a/supertokens_python/recipe/thirdparty/providers/custom.py b/supertokens_python/recipe/thirdparty/providers/custom.py
@@ -300,7 +300,9 @@ async def exchange_auth_code_for_oauth_tokens(
             access_token_params["code_verifier"] = redirect_uri_info.pkce_code_verifier
 
         if self.config.token_endpoint_body_params is not None:
-            access_token_params = merge_into_dict(self.config.token_endpoint_body_params, access_token_params)
+            access_token_params = merge_into_dict(
+                self.config.token_endpoint_body_params, access_token_params
+            )
 
         # Transformation needed for dev keys BEGIN
         if is_using_oauth_development_client_id(self.config.client_id):
@@ -343,10 +345,14 @@ async def get_user_info(
 
             if self.config.user_info_endpoint is not None:
                 if self.config.user_info_endpoint_headers is not None:
-                    headers = merge_into_dict(self.config.user_info_endpoint_headers, headers)
+                    headers = merge_into_dict(
+                        self.config.user_info_endpoint_headers, headers
+                    )
 
                 if self.config.user_info_endpoint_query_params is not None:
-                    query_params = merge_into_dict(self.config.user_info_endpoint_query_params, query_params)
+                    query_params = merge_into_dict(
+                        self.config.user_info_endpoint_query_params, query_params
+                    )
 
                 raw_user_info_from_provider.from_user_info_api = await do_get_request(
                     self.config.user_info_endpoint, query_params, headers
diff --git a/supertokens_python/recipe/thirdparty/providers/gitlab.py b/supertokens_python/recipe/thirdparty/providers/gitlab.py
@@ -41,9 +41,9 @@ def __init__(
             None, Dict[str, Union[str, Callable[[BaseRequest], str]]]
         ] = None,
         gitlab_base_url: str = "https://gitlab.com",
-        is_default: bool = False,
+        _is_default: bool = False,
     ):
-        super().__init__("gitlab") # FIXME: Where should is_default go?
+        super().__init__("gitlab")  # FIXME: Where should is_default go?
         default_scopes = ["read_user"]
         if scope is None:
             scope = default_scopes
diff --git a/supertokens_python/recipe/thirdparty/recipe.py b/supertokens_python/recipe/thirdparty/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, Any, Dict, List, Union
+from typing import TYPE_CHECKING, Any, Dict, List, Union, Optional
 
 from supertokens_python.normalised_url_path import NormalisedURLPath
 from supertokens_python.querier import Querier
@@ -121,6 +121,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/thirdpartyemailpassword/recipe.py b/supertokens_python/recipe/thirdpartyemailpassword/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, List, Union
+from typing import TYPE_CHECKING, List, Union, Optional
 
 from supertokens_python.framework.response import BaseResponse
 from supertokens_python.ingredients.emaildelivery.types import EmailDeliveryConfig
@@ -210,6 +210,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
@@ -220,7 +221,7 @@ async def handle_api_request(
             is not None
         ):
             return await self.email_password_recipe.handle_api_request(
-                request_id, request, path, method, response
+                request_id, tenant_id, request, path, method, response
             )
         if (
             self.third_party_recipe is not None
@@ -230,7 +231,7 @@ async def handle_api_request(
             is not None
         ):
             return await self.third_party_recipe.handle_api_request(
-                request_id, request, path, method, response
+                request_id, tenant_id, request, path, method, response
             )
         return None
 
diff --git a/supertokens_python/recipe/thirdpartypasswordless/recipe.py b/supertokens_python/recipe/thirdpartypasswordless/recipe.py
@@ -14,7 +14,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import TYPE_CHECKING, Any, Dict, List, Union
+from typing import TYPE_CHECKING, Any, Dict, List, Union, Optional
 
 from supertokens_python.framework.response import BaseResponse
 from supertokens_python.ingredients.emaildelivery.types import EmailDeliveryConfig
@@ -224,6 +224,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
@@ -234,7 +235,7 @@ async def handle_api_request(
             is not None
         ):
             return await self.passwordless_recipe.handle_api_request(
-                request_id, request, path, method, response
+                request_id, tenant_id, request, path, method, response
             )
         if (
             self.third_party_recipe is not None
@@ -244,7 +245,7 @@ async def handle_api_request(
             is not None
         ):
             return await self.third_party_recipe.handle_api_request(
-                request_id, request, path, method, response
+                request_id, tenant_id, request, path, method, response
             )
         return None
 
diff --git a/supertokens_python/recipe/usermetadata/recipe.py b/supertokens_python/recipe/usermetadata/recipe.py
@@ -15,7 +15,7 @@
 from __future__ import annotations
 
 from os import environ
-from typing import List, Union
+from typing import List, Union, Optional
 
 from supertokens_python.exceptions import SuperTokensError, raise_general_exception
 from supertokens_python.framework import BaseRequest, BaseResponse
@@ -66,6 +66,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe/userroles/recipe.py b/supertokens_python/recipe/userroles/recipe.py
@@ -84,6 +84,7 @@ def get_apis_handled(self) -> List[APIHandled]:
     async def handle_api_request(
         self,
         request_id: str,
+        tenant_id: Optional[str],
         request: BaseRequest,
         path: NormalisedURLPath,
         method: str,
diff --git a/supertokens_python/recipe_module.py b/supertokens_python/recipe_module.py
diff --git a/supertokens_python/supertokens.py b/supertokens_python/supertokens.py
diff --git a/tests/multitenancy/__init__.py b/tests/multitenancy/__init__.py
diff --git a/tests/multitenancy/test_router.py b/tests/multitenancy/test_router.py
diff --git a/tests/utils.py b/tests/utils.py
