feat(scheduler): add admin permission to allow schedulable tasks exec…

…ution through api
hotosm · Feb 19, 2025 · 3863064 · 3863064
1 parent 7638062
commit 3863064
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 3 deletions.
diff --git a/src/backend/app/tasks/task_routes.py b/src/backend/app/tasks/task_routes.py
@@ -24,10 +24,10 @@
 from psycopg import Connection
 
 from app.auth.auth_schemas import ProjectUserDict
-from app.auth.roles import mapper
+from app.auth.roles import mapper, super_admin
 from app.db.database import db_conn
 from app.db.enums import HTTPStatus
-from app.db.models import DbTask, DbTaskEvent
+from app.db.models import DbTask, DbTaskEvent, DbUser
 from app.tasks import task_crud, task_schemas
 
 router = APIRouter(
@@ -118,7 +118,10 @@ async def get_task_event_history(
 
 
 @router.post("/unlock-tasks")
-async def unlock_tasks(db: Annotated[Connection, Depends(db_conn)]):
+async def unlock_tasks(
+    db: Annotated[Connection, Depends(db_conn)],
+    current_user: Annotated[DbUser, Depends(super_admin)],
+):
     """Endpoint to trigger unlock_old_locked_tasks manually."""
     log.info("Start processing inactive tasks")
     await task_crud.trigger_unlock_tasks(db)

diff --git a/src/backend/app/users/user_routes.py b/src/backend/app/users/user_routes.py
@@ -103,7 +103,10 @@ async def delete_user_by_identifier(
 @router.post("/process-inactive-users")
 async def delete_inactive_users(
     db: Annotated[Connection, Depends(db_conn)],
+    current_user: Annotated[DbUser, Depends(super_admin)],
 ):
     """Identify inactive users, send warnings, and delete accounts."""
+    log.info("Start processing inactive users")
     await process_inactive_users(db)
+    log.info("Finished processing inactive users")
     return Response(status_code=HTTPStatus.NO_CONTENT)