oliver-sales-ops-platform/backend/app/api/users.py

"""User directory endpoints — list users (used by approver picker)."""

from fastapi import APIRouter, Depends
from sqlalchemy import select
from sqlalchemy.ext.asyncio import AsyncSession

from app.database import get_db
from app.middleware.auth import get_current_user
from app.models.user import AppUser
from app.schemas.approval import UserBrief

router = APIRouter()


@router.get("", response_model=list[UserBrief])
async def list_users(
    db: AsyncSession = Depends(get_db),
    current=Depends(get_current_user),
):
    """Returns all known AppUsers — the directory of potential approvers.
    Users land in this table on first authenticated request."""
    result = await db.execute(select(AppUser).order_by(AppUser.email))
    return [
        UserBrief(
            id=u.id, email=u.email, name=u.name,
            role=u.role.value, last_login=u.last_login,
        )
        for u in result.scalars().all()
    ]


@router.get("/me", response_model=UserBrief)
async def me(
    db: AsyncSession = Depends(get_db),
    current=Depends(get_current_user),
):
    """Current authenticated user's own row."""
    result = await db.execute(select(AppUser).where(AppUser.id == current["user_id"]))
    u = result.scalar_one()
    return UserBrief(
        id=u.id, email=u.email, name=u.name,
        role=u.role.value, last_login=u.last_login,
    )