mirror of
https://github.com/Significant-Gravitas/AutoGPT.git
synced 2026-04-08 03:00:28 -04:00
57b17dc8e1
### Why / What / How **Why:** We need a third credential type: **system-provided but unique per user** (managed credentials). Currently we have system credentials (same for all users) and user credentials (user provides their own keys). Managed credentials bridge the gap — the platform provisions them automatically, one per user, for integrations like AgentMail where each user needs their own pod-scoped API key. **What:** - Generic **managed credential provider registry** — any integration can register a provider that auto-provisions per-user credentials - **AgentMail** is the first consumer: creates a pod + pod-scoped API key using the org-level API key - Managed credentials appear in the credential dropdown like normal API keys but with `autogpt_managed=True` — users **cannot update or delete** them - **Auto-provisioning** on `GET /credentials` — lazily creates managed credentials when users browse their credential list - **Account deletion cleanup** utility — revokes external resources (pods, API keys) before user deletion - **Frontend UX** — hides the delete button for managed credentials on the integrations page **How:** ### Backend **New files:** - `backend/integrations/managed_credentials.py` — `ManagedCredentialProvider` ABC, global registry, `ensure_managed_credentials()` (with per-user asyncio lock + `asyncio.gather` for concurrency), `cleanup_managed_credentials()` - `backend/integrations/managed_providers/__init__.py` — `register_all()` called at startup - `backend/integrations/managed_providers/agentmail.py` — `AgentMailManagedProvider` with `provision()` (creates pod + API key via agentmail SDK) and `deprovision()` (deletes pod) **Modified files:** - `credentials_store.py` — `autogpt_managed` guards on update/delete, `has_managed_credential()` / `add_managed_credential()` helpers - `model.py` — `autogpt_managed: bool` + `metadata: dict` on `_BaseCredentials` - `router.py` — calls `ensure_managed_credentials()` in list endpoints, removed explicit `/agentmail/connect` endpoint - `user.py` — `cleanup_user_managed_credentials()` for account deletion - `rest_api.py` — registers managed providers at startup - `settings.py` — `agentmail_api_key` setting ### Frontend - Added `autogpt_managed` to `CredentialsMetaResponse` type - Conditionally hides delete button on integrations page for managed credentials ### Key design decisions - **Auto-provision in API layer, not data layer** — keeps `get_all_creds()` side-effect-free - **Race-safe** — per-(user, provider) asyncio lock with double-check pattern prevents duplicate pods - **Idempotent** — AgentMail SDK `client_id` ensures pod creation is idempotent; `add_managed_credential()` uses upsert under Redis lock - **Error-resilient** — provisioning failures are logged but never block credential listing ### Changes 🏗️ | File | Action | Description | |------|--------|-------------| | `backend/integrations/managed_credentials.py` | NEW | ABC, registry, ensure/cleanup | | `backend/integrations/managed_providers/__init__.py` | NEW | Registers all providers at startup | | `backend/integrations/managed_providers/agentmail.py` | NEW | AgentMail provisioning/deprovisioning | | `backend/integrations/credentials_store.py` | MODIFY | Guards + managed credential helpers | | `backend/data/model.py` | MODIFY | `autogpt_managed` + `metadata` fields | | `backend/api/features/integrations/router.py` | MODIFY | Auto-provision on list, removed `/agentmail/connect` | | `backend/data/user.py` | MODIFY | Account deletion cleanup | | `backend/api/rest_api.py` | MODIFY | Provider registration at startup | | `backend/util/settings.py` | MODIFY | `agentmail_api_key` setting | | `frontend/.../integrations/page.tsx` | MODIFY | Hide delete for managed creds | | `frontend/.../types.ts` | MODIFY | `autogpt_managed` field | ### Checklist 📋 #### For code changes: - [x] I have clearly listed my changes in the PR description - [x] I have made a test plan - [x] I have tested my changes according to the test plan: - [x] 23 tests pass in `router_test.py` (9 new tests for ensure/cleanup/auto-provisioning) - [x] `poetry run format && poetry run lint` — clean - [x] OpenAPI schema regenerated - [x] Manual: verify managed credential appears in AgentMail block dropdown - [x] Manual: verify delete button hidden for managed credentials - [x] Manual: verify managed credential cannot be deleted via API (403) #### For configuration changes: - [x] `.env.default` is updated with `AGENTMAIL_API_KEY=` --------- Co-authored-by: Zamil Majdy <zamil.majdy@agpt.co>
496 lines
19 KiB
Python
496 lines
19 KiB
Python
import base64
|
|
import hashlib
|
|
import hmac
|
|
import logging
|
|
from datetime import datetime, timedelta
|
|
from typing import TYPE_CHECKING, Optional, cast
|
|
from urllib.parse import quote_plus
|
|
|
|
from autogpt_libs.auth.models import DEFAULT_USER_ID
|
|
from fastapi import HTTPException
|
|
from prisma.enums import NotificationType
|
|
from prisma.models import User as PrismaUser
|
|
from prisma.types import JsonFilter, UserCreateInput, UserUpdateInput
|
|
|
|
from backend.data.db import prisma
|
|
from backend.data.model import User, UserIntegrations, UserMetadata
|
|
from backend.data.notifications import NotificationPreference, NotificationPreferenceDTO
|
|
from backend.util.cache import cached
|
|
from backend.util.encryption import JSONCryptor
|
|
from backend.util.exceptions import DatabaseError
|
|
from backend.util.json import SafeJson
|
|
from backend.util.settings import Settings
|
|
|
|
if TYPE_CHECKING:
|
|
from backend.integrations.credentials_store import IntegrationCredentialsStore
|
|
|
|
logger = logging.getLogger(__name__)
|
|
settings = Settings()
|
|
|
|
# Cache decorator alias for consistent user lookup caching
|
|
cache_user_lookup = cached(maxsize=1000, ttl_seconds=300)
|
|
|
|
|
|
@cache_user_lookup
|
|
async def get_or_create_user(user_data: dict) -> User:
|
|
try:
|
|
user_id = user_data.get("sub")
|
|
if not user_id:
|
|
raise HTTPException(status_code=401, detail="User ID not found in token")
|
|
|
|
user_email = user_data.get("email")
|
|
if not user_email:
|
|
raise HTTPException(status_code=401, detail="Email not found in token")
|
|
|
|
user = await prisma.user.find_unique(where={"id": user_id})
|
|
if not user:
|
|
user = await prisma.user.create(
|
|
data=UserCreateInput(
|
|
id=user_id,
|
|
email=user_email,
|
|
name=user_data.get("user_metadata", {}).get("name"),
|
|
)
|
|
)
|
|
|
|
return User.from_db(user)
|
|
except Exception as e:
|
|
raise DatabaseError(f"Failed to get or create user {user_data}: {e}") from e
|
|
|
|
|
|
@cache_user_lookup
|
|
async def get_user_by_id(user_id: str) -> User:
|
|
user = await prisma.user.find_unique(where={"id": user_id})
|
|
if not user:
|
|
raise ValueError(f"User not found with ID: {user_id}")
|
|
return User.from_db(user)
|
|
|
|
|
|
async def get_user_email_by_id(user_id: str) -> Optional[str]:
|
|
try:
|
|
user = await prisma.user.find_unique(where={"id": user_id})
|
|
return user.email if user else None
|
|
except Exception as e:
|
|
raise DatabaseError(f"Failed to get user email for user {user_id}: {e}") from e
|
|
|
|
|
|
@cache_user_lookup
|
|
async def get_user_by_email(email: str) -> Optional[User]:
|
|
try:
|
|
user = await prisma.user.find_unique(where={"email": email})
|
|
return User.from_db(user) if user else None
|
|
except Exception as e:
|
|
raise DatabaseError(f"Failed to get user by email {email}: {e}") from e
|
|
|
|
|
|
async def update_user_email(user_id: str, email: str):
|
|
try:
|
|
# Get old email first for cache invalidation
|
|
old_user = await prisma.user.find_unique(where={"id": user_id})
|
|
old_email = old_user.email if old_user else None
|
|
|
|
await prisma.user.update(where={"id": user_id}, data={"email": email})
|
|
|
|
# Selectively invalidate only the specific user entries
|
|
get_user_by_id.cache_delete(user_id)
|
|
if old_email:
|
|
get_user_by_email.cache_delete(old_email)
|
|
get_user_by_email.cache_delete(email)
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to update user email for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
async def create_default_user() -> Optional[User]:
|
|
user = await prisma.user.find_unique(where={"id": DEFAULT_USER_ID})
|
|
if not user:
|
|
user = await prisma.user.create(
|
|
data=UserCreateInput(
|
|
id=DEFAULT_USER_ID,
|
|
email="default@example.com",
|
|
name="Default User",
|
|
)
|
|
)
|
|
return User.from_db(user)
|
|
|
|
|
|
async def get_user_integrations(user_id: str) -> UserIntegrations:
|
|
user = await PrismaUser.prisma().find_unique_or_raise(
|
|
where={"id": user_id},
|
|
)
|
|
|
|
encrypted_integrations = user.integrations
|
|
if not encrypted_integrations:
|
|
return UserIntegrations()
|
|
else:
|
|
return UserIntegrations.model_validate(
|
|
JSONCryptor().decrypt(encrypted_integrations)
|
|
)
|
|
|
|
|
|
async def update_user_integrations(user_id: str, data: UserIntegrations):
|
|
encrypted_data = JSONCryptor().encrypt(data.model_dump(exclude_none=True))
|
|
await PrismaUser.prisma().update(
|
|
where={"id": user_id},
|
|
data={"integrations": encrypted_data},
|
|
)
|
|
# Invalidate cache for this user
|
|
get_user_by_id.cache_delete(user_id)
|
|
|
|
|
|
async def migrate_and_encrypt_user_integrations():
|
|
"""Migrate integration credentials and OAuth states from metadata to integrations column."""
|
|
users = await PrismaUser.prisma().find_many(
|
|
where={
|
|
"metadata": cast(
|
|
JsonFilter,
|
|
{
|
|
"path": ["integration_credentials"],
|
|
"not": SafeJson(
|
|
{"a": "yolo"}
|
|
), # bogus value works to check if key exists
|
|
},
|
|
)
|
|
}
|
|
)
|
|
logger.info(f"Migrating integration credentials for {len(users)} users")
|
|
|
|
for user in users:
|
|
raw_metadata = cast(dict, user.metadata)
|
|
metadata = UserMetadata.model_validate(raw_metadata)
|
|
|
|
# Get existing integrations data
|
|
integrations = await get_user_integrations(user_id=user.id)
|
|
|
|
# Copy credentials and oauth states from metadata if they exist
|
|
if metadata.integration_credentials and not integrations.credentials:
|
|
integrations.credentials = metadata.integration_credentials
|
|
if metadata.integration_oauth_states:
|
|
integrations.oauth_states = metadata.integration_oauth_states
|
|
|
|
# Save to integrations column
|
|
await update_user_integrations(user_id=user.id, data=integrations)
|
|
|
|
# Remove from metadata
|
|
raw_metadata.pop("integration_credentials", None)
|
|
raw_metadata.pop("integration_oauth_states", None)
|
|
|
|
# Update metadata without integration data
|
|
await PrismaUser.prisma().update(
|
|
where={"id": user.id},
|
|
data={"metadata": SafeJson(raw_metadata)},
|
|
)
|
|
|
|
|
|
async def get_active_user_ids_in_timerange(start_time: str, end_time: str) -> list[str]:
|
|
try:
|
|
users = await PrismaUser.prisma().find_many(
|
|
where={
|
|
"AgentGraphExecutions": {
|
|
"some": {
|
|
"createdAt": {
|
|
"gte": datetime.fromisoformat(start_time),
|
|
"lte": datetime.fromisoformat(end_time),
|
|
}
|
|
}
|
|
}
|
|
},
|
|
)
|
|
return [user.id for user in users]
|
|
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to get active user ids in timerange {start_time} to {end_time}: {e}"
|
|
) from e
|
|
|
|
|
|
async def get_active_users_ids() -> list[str]:
|
|
user_ids = await get_active_user_ids_in_timerange(
|
|
(datetime.now() - timedelta(days=30)).isoformat(),
|
|
datetime.now().isoformat(),
|
|
)
|
|
return user_ids
|
|
|
|
|
|
async def get_user_notification_preference(user_id: str) -> NotificationPreference:
|
|
try:
|
|
user = await PrismaUser.prisma().find_unique_or_raise(
|
|
where={"id": user_id},
|
|
)
|
|
|
|
# enable notifications by default if user has no notification preference (shouldn't ever happen though)
|
|
preferences: dict[NotificationType, bool] = {
|
|
NotificationType.AGENT_RUN: user.notifyOnAgentRun or False,
|
|
NotificationType.ZERO_BALANCE: user.notifyOnZeroBalance or False,
|
|
NotificationType.LOW_BALANCE: user.notifyOnLowBalance or False,
|
|
NotificationType.BLOCK_EXECUTION_FAILED: user.notifyOnBlockExecutionFailed
|
|
or False,
|
|
NotificationType.CONTINUOUS_AGENT_ERROR: user.notifyOnContinuousAgentError
|
|
or False,
|
|
NotificationType.DAILY_SUMMARY: user.notifyOnDailySummary or False,
|
|
NotificationType.WEEKLY_SUMMARY: user.notifyOnWeeklySummary or False,
|
|
NotificationType.MONTHLY_SUMMARY: user.notifyOnMonthlySummary or False,
|
|
NotificationType.AGENT_APPROVED: user.notifyOnAgentApproved or False,
|
|
NotificationType.AGENT_REJECTED: user.notifyOnAgentRejected or False,
|
|
}
|
|
daily_limit = user.maxEmailsPerDay or 3
|
|
notification_preference = NotificationPreference(
|
|
user_id=user.id,
|
|
email=user.email,
|
|
preferences=preferences,
|
|
daily_limit=daily_limit,
|
|
# TODO with other changes later, for now we just will email them
|
|
emails_sent_today=0,
|
|
last_reset_date=datetime.now(),
|
|
)
|
|
return NotificationPreference.model_validate(notification_preference)
|
|
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to upsert user notification preference for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
async def update_user_notification_preference(
|
|
user_id: str, data: NotificationPreferenceDTO
|
|
) -> NotificationPreference:
|
|
try:
|
|
update_data: UserUpdateInput = {}
|
|
if data.email:
|
|
update_data["email"] = data.email
|
|
if NotificationType.AGENT_RUN in data.preferences:
|
|
update_data["notifyOnAgentRun"] = data.preferences[
|
|
NotificationType.AGENT_RUN
|
|
]
|
|
if NotificationType.ZERO_BALANCE in data.preferences:
|
|
update_data["notifyOnZeroBalance"] = data.preferences[
|
|
NotificationType.ZERO_BALANCE
|
|
]
|
|
if NotificationType.LOW_BALANCE in data.preferences:
|
|
update_data["notifyOnLowBalance"] = data.preferences[
|
|
NotificationType.LOW_BALANCE
|
|
]
|
|
if NotificationType.BLOCK_EXECUTION_FAILED in data.preferences:
|
|
update_data["notifyOnBlockExecutionFailed"] = data.preferences[
|
|
NotificationType.BLOCK_EXECUTION_FAILED
|
|
]
|
|
if NotificationType.CONTINUOUS_AGENT_ERROR in data.preferences:
|
|
update_data["notifyOnContinuousAgentError"] = data.preferences[
|
|
NotificationType.CONTINUOUS_AGENT_ERROR
|
|
]
|
|
if NotificationType.DAILY_SUMMARY in data.preferences:
|
|
update_data["notifyOnDailySummary"] = data.preferences[
|
|
NotificationType.DAILY_SUMMARY
|
|
]
|
|
if NotificationType.WEEKLY_SUMMARY in data.preferences:
|
|
update_data["notifyOnWeeklySummary"] = data.preferences[
|
|
NotificationType.WEEKLY_SUMMARY
|
|
]
|
|
if NotificationType.MONTHLY_SUMMARY in data.preferences:
|
|
update_data["notifyOnMonthlySummary"] = data.preferences[
|
|
NotificationType.MONTHLY_SUMMARY
|
|
]
|
|
if NotificationType.AGENT_APPROVED in data.preferences:
|
|
update_data["notifyOnAgentApproved"] = data.preferences[
|
|
NotificationType.AGENT_APPROVED
|
|
]
|
|
if NotificationType.AGENT_REJECTED in data.preferences:
|
|
update_data["notifyOnAgentRejected"] = data.preferences[
|
|
NotificationType.AGENT_REJECTED
|
|
]
|
|
if data.daily_limit:
|
|
update_data["maxEmailsPerDay"] = data.daily_limit
|
|
|
|
user = await PrismaUser.prisma().update(
|
|
where={"id": user_id},
|
|
data=update_data,
|
|
)
|
|
if not user:
|
|
raise ValueError(f"User not found with ID: {user_id}")
|
|
|
|
# Invalidate cache for this user since notification preferences are part of user data
|
|
get_user_by_id.cache_delete(user_id)
|
|
|
|
preferences: dict[NotificationType, bool] = {
|
|
NotificationType.AGENT_RUN: user.notifyOnAgentRun or True,
|
|
NotificationType.ZERO_BALANCE: user.notifyOnZeroBalance or True,
|
|
NotificationType.LOW_BALANCE: user.notifyOnLowBalance or True,
|
|
NotificationType.BLOCK_EXECUTION_FAILED: user.notifyOnBlockExecutionFailed
|
|
or True,
|
|
NotificationType.CONTINUOUS_AGENT_ERROR: user.notifyOnContinuousAgentError
|
|
or True,
|
|
NotificationType.DAILY_SUMMARY: user.notifyOnDailySummary or True,
|
|
NotificationType.WEEKLY_SUMMARY: user.notifyOnWeeklySummary or True,
|
|
NotificationType.MONTHLY_SUMMARY: user.notifyOnMonthlySummary or True,
|
|
NotificationType.AGENT_APPROVED: user.notifyOnAgentApproved or True,
|
|
NotificationType.AGENT_REJECTED: user.notifyOnAgentRejected or True,
|
|
}
|
|
notification_preference = NotificationPreference(
|
|
user_id=user.id,
|
|
email=user.email,
|
|
preferences=preferences,
|
|
daily_limit=user.maxEmailsPerDay or 3,
|
|
# TODO with other changes later, for now we just will email them
|
|
emails_sent_today=0,
|
|
last_reset_date=datetime.now(),
|
|
)
|
|
return NotificationPreference.model_validate(notification_preference)
|
|
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to update user notification preference for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
async def set_user_email_verification(user_id: str, verified: bool) -> None:
|
|
"""Set the email verification status for a user."""
|
|
try:
|
|
await PrismaUser.prisma().update(
|
|
where={"id": user_id},
|
|
data={"emailVerified": verified},
|
|
)
|
|
# Invalidate cache for this user
|
|
get_user_by_id.cache_delete(user_id)
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to set email verification status for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
async def disable_all_user_notifications(user_id: str) -> None:
|
|
"""Disable all notification preferences for a user.
|
|
|
|
Used when user's email bounces/is inactive to prevent any future notifications.
|
|
"""
|
|
try:
|
|
await PrismaUser.prisma().update(
|
|
where={"id": user_id},
|
|
data={
|
|
"notifyOnAgentRun": False,
|
|
"notifyOnZeroBalance": False,
|
|
"notifyOnLowBalance": False,
|
|
"notifyOnBlockExecutionFailed": False,
|
|
"notifyOnContinuousAgentError": False,
|
|
"notifyOnDailySummary": False,
|
|
"notifyOnWeeklySummary": False,
|
|
"notifyOnMonthlySummary": False,
|
|
"notifyOnAgentApproved": False,
|
|
"notifyOnAgentRejected": False,
|
|
},
|
|
)
|
|
# Invalidate cache for this user
|
|
get_user_by_id.cache_delete(user_id)
|
|
logger.info(f"Disabled all notification preferences for user {user_id}")
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to disable notifications for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
async def get_user_email_verification(user_id: str) -> bool:
|
|
"""Get the email verification status for a user."""
|
|
try:
|
|
user = await PrismaUser.prisma().find_unique_or_raise(
|
|
where={"id": user_id},
|
|
)
|
|
return user.emailVerified
|
|
except Exception as e:
|
|
raise DatabaseError(
|
|
f"Failed to get email verification status for user {user_id}: {e}"
|
|
) from e
|
|
|
|
|
|
def generate_unsubscribe_link(user_id: str) -> str:
|
|
"""Generate a link to unsubscribe from all notifications"""
|
|
# Create an HMAC using a secret key
|
|
secret_key = settings.secrets.unsubscribe_secret_key
|
|
signature = hmac.new(
|
|
secret_key.encode("utf-8"), user_id.encode("utf-8"), hashlib.sha256
|
|
).digest()
|
|
|
|
# Create a token that combines the user_id and signature
|
|
token = base64.urlsafe_b64encode(
|
|
f"{user_id}:{signature.hex()}".encode("utf-8")
|
|
).decode("utf-8")
|
|
logger.info(f"Generating unsubscribe link for user {user_id}")
|
|
|
|
base_url = settings.config.platform_base_url
|
|
return f"{base_url}/api/email/unsubscribe?token={quote_plus(token)}"
|
|
|
|
|
|
async def unsubscribe_user_by_token(token: str) -> None:
|
|
"""Unsubscribe a user from all notifications using the token"""
|
|
try:
|
|
# Decode the token
|
|
decoded = base64.urlsafe_b64decode(token).decode("utf-8")
|
|
user_id, received_signature_hex = decoded.split(":", 1)
|
|
|
|
# Verify the signature
|
|
secret_key = settings.secrets.unsubscribe_secret_key
|
|
expected_signature = hmac.new(
|
|
secret_key.encode("utf-8"), user_id.encode("utf-8"), hashlib.sha256
|
|
).digest()
|
|
|
|
if not hmac.compare_digest(expected_signature.hex(), received_signature_hex):
|
|
raise ValueError("Invalid token signature")
|
|
|
|
user = await get_user_by_id(user_id)
|
|
await update_user_notification_preference(
|
|
user.id,
|
|
NotificationPreferenceDTO(
|
|
email=user.email,
|
|
daily_limit=0,
|
|
preferences={
|
|
NotificationType.AGENT_RUN: False,
|
|
NotificationType.ZERO_BALANCE: False,
|
|
NotificationType.LOW_BALANCE: False,
|
|
NotificationType.BLOCK_EXECUTION_FAILED: False,
|
|
NotificationType.CONTINUOUS_AGENT_ERROR: False,
|
|
NotificationType.DAILY_SUMMARY: False,
|
|
NotificationType.WEEKLY_SUMMARY: False,
|
|
NotificationType.MONTHLY_SUMMARY: False,
|
|
},
|
|
),
|
|
)
|
|
except Exception as e:
|
|
raise DatabaseError(f"Failed to unsubscribe user by token {token}: {e}") from e
|
|
|
|
|
|
async def cleanup_user_managed_credentials(
|
|
user_id: str,
|
|
store: Optional["IntegrationCredentialsStore"] = None,
|
|
) -> None:
|
|
"""Revoke all externally-provisioned managed credentials for *user_id*.
|
|
|
|
Call this before deleting a user account so that external resources
|
|
(e.g. AgentMail pods, pod-scoped API keys) are properly cleaned up.
|
|
The credential rows themselves are cascade-deleted with the User row.
|
|
|
|
Pass an existing *store* for testability; when omitted a fresh instance
|
|
is created.
|
|
"""
|
|
from backend.integrations.credentials_store import IntegrationCredentialsStore
|
|
from backend.integrations.managed_credentials import cleanup_managed_credentials
|
|
|
|
if store is None:
|
|
store = IntegrationCredentialsStore()
|
|
await cleanup_managed_credentials(user_id, store)
|
|
|
|
|
|
async def update_user_timezone(user_id: str, timezone: str) -> User:
|
|
"""Update a user's timezone setting."""
|
|
try:
|
|
user = await PrismaUser.prisma().update(
|
|
where={"id": user_id},
|
|
data={"timezone": timezone},
|
|
)
|
|
if not user:
|
|
raise ValueError(f"User not found with ID: {user_id}")
|
|
|
|
# Invalidate cache for this user
|
|
get_user_by_id.cache_delete(user_id)
|
|
|
|
return User.from_db(user)
|
|
except Exception as e:
|
|
raise DatabaseError(f"Failed to update timezone for user {user_id}: {e}") from e
|