feat(documents): delete stored file from storage on document deletion

btouchard · btouchard · commit 2acbc3ed9f4a · 2026-04-09T00:25:30.000+02:00
diff --git a/backend/internal/presentation/api/documents/handler.go b/backend/internal/presentation/api/documents/handler.go
@@ -52,6 +52,11 @@ type webhookPublisher interface {
 	Publish(ctx context.Context, eventType string, payload map[string]interface{}) error
 }
 
+// fileDeleter deletes a stored file by its storage key.
+type fileDeleter interface {
+	Delete(ctx context.Context, key string) error
+}
+
 // signatureService defines the interface for signature operations
 type signatureService interface {
 	GetDocumentSignatures(ctx context.Context, docID string) ([]*models.Signature, error)
@@ -78,6 +83,7 @@ type Handler struct {
 	quotaRecorder    QuotaRecorder
 	tenantProvider   providers.TenantProvider
 	auditLogger      shared.AuditLogger
+	storageProvider  fileDeleter
 	baseURL          string
 }
 
@@ -116,6 +122,12 @@ func (h *Handler) WithAdminService(adminService adminService, baseURL string) *H
 	return h
 }
 
+// WithStorageProvider sets the storage provider used to delete uploaded files on document deletion.
+func (h *Handler) WithStorageProvider(p fileDeleter) *Handler {
+	h.storageProvider = p
+	return h
+}
+
 // DocumentDTO represents a document data transfer object
 type DocumentDTO struct {
 	ID                  string                 `json:"id"`
@@ -1196,6 +1208,16 @@ func (h *Handler) HandleDeleteMyDocument(w http.ResponseWriter, r *http.Request)
 		return
 	}
 
+	// Delete the stored file if one exists — best-effort, log on failure
+	if h.storageProvider != nil && doc.StorageKey != "" {
+		if err := h.storageProvider.Delete(ctx, doc.StorageKey); err != nil {
+			logger.Logger.Error("Failed to delete document file from storage",
+				"doc_id", doc.DocID,
+				"storage_key", doc.StorageKey,
+				"error", err.Error())
+		}
+	}
+
 	// Decrement document quota counter
 	if h.quotaRecorder != nil {
 		tenantID := h.getTenantID(ctx)
diff --git a/backend/internal/presentation/api/documents/handler_test.go b/backend/internal/presentation/api/documents/handler_test.go
@@ -1153,6 +1153,220 @@ func TestHandler_HandleFindOrCreateDocument_ExistingDoc_NoQuotaRecord(t *testing
 	assert.False(t, recorder.recordCalled, "quota record should NOT be called for existing doc")
 }
 
+// ============================================================================
+// TESTS - HandleDeleteMyDocument
+// ============================================================================
+
+// mockAdminService implements the adminService interface for tests.
+type mockAdminService struct {
+	getDocFunc    func(ctx context.Context, docID string) (*models.Document, error)
+	deleteDocFunc func(ctx context.Context, docID string) error
+}
+
+func (m *mockAdminService) GetDocument(ctx context.Context, docID string) (*models.Document, error) {
+	if m.getDocFunc != nil {
+		return m.getDocFunc(ctx, docID)
+	}
+	return testDoc, nil
+}
+
+func (m *mockAdminService) DeleteDocument(ctx context.Context, docID string) error {
+	if m.deleteDocFunc != nil {
+		return m.deleteDocFunc(ctx, docID)
+	}
+	return nil
+}
+
+func (m *mockAdminService) UpdateDocumentMetadata(_ context.Context, _ string, _ models.DocumentInput, _ string) (*models.Document, error) {
+	return testDoc, nil
+}
+
+func (m *mockAdminService) ListExpectedSignersWithStatus(_ context.Context, _ string) ([]*models.ExpectedSignerWithStatus, error) {
+	return nil, nil
+}
+
+func (m *mockAdminService) GetSignerStats(_ context.Context, _ string) (*models.DocCompletionStats, error) {
+	return &models.DocCompletionStats{}, nil
+}
+
+func (m *mockAdminService) AddExpectedSigners(_ context.Context, _ string, _ []models.ContactInfo, _ string) error {
+	return nil
+}
+
+func (m *mockAdminService) RemoveExpectedSigner(_ context.Context, _, _ string) error {
+	return nil
+}
+
+// mockFileDeleter tracks Delete calls for test assertions.
+type mockFileDeleter struct {
+	deletedKeys []string
+	deleteErr   error
+}
+
+func (m *mockFileDeleter) Delete(_ context.Context, key string) error {
+	m.deletedKeys = append(m.deletedKeys, key)
+	return m.deleteErr
+}
+
+func makeDeleteRequest(docID string, user *models.User) *http.Request {
+	req := httptest.NewRequest(http.MethodDelete, "/api/v1/users/me/documents/"+docID, nil)
+	rctx := chi.NewRouteContext()
+	rctx.URLParams.Add("docId", docID)
+	ctx := context.WithValue(req.Context(), chi.RouteCtxKey, rctx)
+	if user != nil {
+		ctx = addUserToContext(ctx, user)
+	}
+	return req.WithContext(ctx)
+}
+
+func TestHandler_HandleDeleteMyDocument_DeletesStoredFile(t *testing.T) {
+	t.Parallel()
+
+	storedDoc := &models.Document{
+		DocID:           "doc-with-file",
+		Title:           "Doc With File",
+		CreatedBy:       testUser.Email,
+		StorageKey:      "tenants/abc/doc-with-file.pdf",
+		StorageProvider: "s3",
+	}
+	deleter := &mockFileDeleter{}
+
+	handler := &Handler{
+		authorizer:      newMockAuthorizer([]string{}, false),
+		storageProvider: deleter,
+		adminService: &mockAdminService{
+			getDocFunc: func(_ context.Context, _ string) (*models.Document, error) {
+				return storedDoc, nil
+			},
+		},
+	}
+
+	rec := httptest.NewRecorder()
+	handler.HandleDeleteMyDocument(rec, makeDeleteRequest(storedDoc.DocID, testUser))
+
+	assert.Equal(t, http.StatusOK, rec.Code)
+	require.Len(t, deleter.deletedKeys, 1)
+	assert.Equal(t, storedDoc.StorageKey, deleter.deletedKeys[0])
+}
+
+func TestHandler_HandleDeleteMyDocument_NoFileNoStorageCall(t *testing.T) {
+	t.Parallel()
+
+	docWithoutFile := &models.Document{
+		DocID:     "doc-no-file",
+		Title:     "URL-only doc",
+		CreatedBy: testUser.Email,
+		URL:       "https://example.com/doc.pdf",
+		// StorageKey intentionally empty
+	}
+	deleter := &mockFileDeleter{}
+
+	handler := &Handler{
+		authorizer:      newMockAuthorizer([]string{}, false),
+		storageProvider: deleter,
+		adminService: &mockAdminService{
+			getDocFunc: func(_ context.Context, _ string) (*models.Document, error) {
+				return docWithoutFile, nil
+			},
+		},
+	}
+
+	rec := httptest.NewRecorder()
+	handler.HandleDeleteMyDocument(rec, makeDeleteRequest(docWithoutFile.DocID, testUser))
+
+	assert.Equal(t, http.StatusOK, rec.Code)
+	assert.Empty(t, deleter.deletedKeys, "Delete must not be called when doc has no storage key")
+}
+
+func TestHandler_HandleDeleteMyDocument_NoStorageProvider(t *testing.T) {
+	t.Parallel()
+
+	storedDoc := &models.Document{
+		DocID:           "doc-with-file",
+		Title:           "Doc With File",
+		CreatedBy:       testUser.Email,
+		StorageKey:      "tenants/abc/doc-with-file.pdf",
+		StorageProvider: "s3",
+	}
+
+	// No storage provider set — should succeed without panic
+	handler := &Handler{
+		authorizer: newMockAuthorizer([]string{}, false),
+		adminService: &mockAdminService{
+			getDocFunc: func(_ context.Context, _ string) (*models.Document, error) {
+				return storedDoc, nil
+			},
+		},
+	}
+
+	rec := httptest.NewRecorder()
+	handler.HandleDeleteMyDocument(rec, makeDeleteRequest(storedDoc.DocID, testUser))
+
+	assert.Equal(t, http.StatusOK, rec.Code)
+}
+
+func TestHandler_HandleDeleteMyDocument_StorageErrorDoesNotFail(t *testing.T) {
+	t.Parallel()
+
+	storedDoc := &models.Document{
+		DocID:           "doc-with-file",
+		Title:           "Doc With File",
+		CreatedBy:       testUser.Email,
+		StorageKey:      "tenants/abc/doc-with-file.pdf",
+		StorageProvider: "s3",
+	}
+	deleter := &mockFileDeleter{deleteErr: fmt.Errorf("s3 unavailable")}
+
+	handler := &Handler{
+		authorizer:      newMockAuthorizer([]string{}, false),
+		storageProvider: deleter,
+		adminService: &mockAdminService{
+			getDocFunc: func(_ context.Context, _ string) (*models.Document, error) {
+				return storedDoc, nil
+			},
+		},
+	}
+
+	rec := httptest.NewRecorder()
+	handler.HandleDeleteMyDocument(rec, makeDeleteRequest(storedDoc.DocID, testUser))
+
+	// Storage error is best-effort: request must still succeed
+	assert.Equal(t, http.StatusOK, rec.Code)
+	assert.Len(t, deleter.deletedKeys, 1, "Delete must still have been attempted")
+}
+
+func TestHandler_HandleDeleteMyDocument_DBErrorSkipsStorageDelete(t *testing.T) {
+	t.Parallel()
+
+	storedDoc := &models.Document{
+		DocID:           "doc-with-file",
+		Title:           "Doc With File",
+		CreatedBy:       testUser.Email,
+		StorageKey:      "tenants/abc/doc-with-file.pdf",
+		StorageProvider: "s3",
+	}
+	deleter := &mockFileDeleter{}
+
+	handler := &Handler{
+		authorizer:      newMockAuthorizer([]string{}, false),
+		storageProvider: deleter,
+		adminService: &mockAdminService{
+			getDocFunc: func(_ context.Context, _ string) (*models.Document, error) {
+				return storedDoc, nil
+			},
+			deleteDocFunc: func(_ context.Context, _ string) error {
+				return fmt.Errorf("db error")
+			},
+		},
+	}
+
+	rec := httptest.NewRecorder()
+	handler.HandleDeleteMyDocument(rec, makeDeleteRequest(storedDoc.DocID, testUser))
+
+	assert.Equal(t, http.StatusInternalServerError, rec.Code)
+	assert.Empty(t, deleter.deletedKeys, "Storage Delete must not be called when DB delete fails")
+}
+
 func Benchmark_detectReferenceType(b *testing.B) {
 	refs := []string{
 		"https://example.com/doc.pdf",
diff --git a/backend/internal/presentation/api/router.go b/backend/internal/presentation/api/router.go
@@ -262,6 +262,9 @@ func NewRouter(cfg RouterConfig) *chi.Mux {
 		cfg.Authorizer,
 	).WithAdminService(cfg.AdminService, cfg.BaseURL)
 
+	if cfg.StorageProvider != nil {
+		documentsHandler.WithStorageProvider(cfg.StorageProvider)
+	}
 	if cfg.QuotaEnforcer != nil && cfg.TenantProvider != nil {
 		documentsHandler.WithQuotaRecorder(
 			&quotaRecorderAdapter{enforcer: cfg.QuotaEnforcer},
