Initial commit: AegisSight-Monitor (OSINT-Monitoringsystem)

src/services/license_service.py

@@ -0,0 +1,117 @@
+"""Lizenz-Verwaltung und -Pruefung."""
+import logging
+from datetime import datetime, timezone
+from config import TIMEZONE
+import aiosqlite
+
+logger = logging.getLogger("osint.license")
+
+
+async def check_license(db: aiosqlite.Connection, organization_id: int) -> dict:
+    """Prueft den Lizenzstatus einer Organisation.
+
+    Returns:
+        dict mit: valid, status, license_type, max_users, current_users, read_only, message
+    """
+    # Organisation pruefen
+    cursor = await db.execute(
+        "SELECT id, name, is_active FROM organizations WHERE id = ?",
+        (organization_id,),
+    )
+    org = await cursor.fetchone()
+    if not org:
+        return {"valid": False, "status": "not_found", "read_only": True, "message": "Organisation nicht gefunden"}
+
+    if not org["is_active"]:
+        return {"valid": False, "status": "org_disabled", "read_only": True, "message": "Organisation deaktiviert"}
+
+    # Aktive Lizenz suchen
+    cursor = await db.execute(
+        """SELECT * FROM licenses
+           WHERE organization_id = ? AND status = 'active'
+           ORDER BY created_at DESC LIMIT 1""",
+        (organization_id,),
+    )
+    license_row = await cursor.fetchone()
+
+    if not license_row:
+        return {"valid": False, "status": "no_license", "read_only": True, "message": "Keine aktive Lizenz"}
+
+    # Ablauf pruefen
+    now = datetime.now(timezone.utc)
+    valid_until = license_row["valid_until"]
+
+    if valid_until is not None:
+        try:
+            expiry = datetime.fromisoformat(valid_until)
+            if expiry.tzinfo is None:
+                expiry = expiry.replace(tzinfo=timezone.utc)
+            if now > expiry:
+                return {
+                    "valid": False,
+                    "status": "expired",
+                    "license_type": license_row["license_type"],
+                    "read_only": True,
+                    "message": "Lizenz abgelaufen",
+                }
+        except (ValueError, TypeError):
+            pass
+
+    # Nutzerzahl pruefen
+    cursor = await db.execute(
+        "SELECT COUNT(*) as cnt FROM users WHERE organization_id = ? AND is_active = 1",
+        (organization_id,),
+    )
+    current_users = (await cursor.fetchone())["cnt"]
+
+    return {
+        "valid": True,
+        "status": license_row["status"],
+        "license_type": license_row["license_type"],
+        "max_users": license_row["max_users"],
+        "current_users": current_users,
+        "read_only": False,
+        "message": "Lizenz aktiv",
+    }
+
+
+async def can_add_user(db: aiosqlite.Connection, organization_id: int) -> tuple[bool, str]:
+    """Prueft ob ein neuer Nutzer hinzugefuegt werden kann (Nutzer-Limit).
+
+    Returns:
+        (erlaubt, grund)
+    """
+    lic = await check_license(db, organization_id)
+    if not lic["valid"]:
+        return False, lic["message"]
+
+    if lic["current_users"] >= lic["max_users"]:
+        return False, f"Nutzer-Limit erreicht ({lic['current_users']}/{lic['max_users']})"
+
+    return True, ""
+
+
+async def expire_licenses(db: aiosqlite.Connection):
+    """Setzt abgelaufene Lizenzen auf 'expired'. Taeglich aufrufen."""
+    cursor = await db.execute(
+        """SELECT id, organization_id FROM licenses
+           WHERE status = 'active'
+           AND valid_until IS NOT NULL
+           AND valid_until < datetime('now')"""
+    )
+    expired = await cursor.fetchall()
+
+    count = 0
+    for lic in expired:
+        await db.execute(
+            "UPDATE licenses SET status = 'expired' WHERE id = ?",
+            (lic["id"],),
+        )
+        count += 1
+        logger.info(f"Lizenz {lic['id']} fuer Org {lic['organization_id']} als abgelaufen markiert")
+
+    if count > 0:
+        await db.commit()
+        logger.info(f"{count} Lizenz(en) als abgelaufen markiert")
+
+    return count