chore: update semantic contracts and git merge handling

backend/src/api/auth.py

@@ -1,12 +1,12 @@
-# [DEF:backend.src.api.auth:Module]
+# [DEF:AuthApi:Module]
 #
 # @COMPLEXITY: 3
 # @SEMANTICS: api, auth, routes, login, logout
 # @PURPOSE:   Authentication API endpoints.
 # @LAYER:     API
-# @RELATION:  USES ->[backend.src.services.auth_service.AuthService]
-# @RELATION:  USES ->[backend.src.core.database.get_auth_db]
-#
+# @RELATION:  USES ->[AuthService:Class]
+# @RELATION:  USES ->[get_auth_db:Function]
+# @RELATION:  DEPENDS_ON ->[AuthRepository:Class]
 # @INVARIANT: All auth endpoints must return consistent error codes.
 
 # [SECTION: IMPORTS]
@@ -38,6 +38,8 @@ router = APIRouter(prefix="/api/auth", tags=["auth"])
 # @PARAM:   form_data (OAuth2PasswordRequestForm) - Login credentials.
 # @PARAM:   db (Session) - Auth database session.
 # @RETURN:  Token - The generated JWT token.
+# @RELATION: CALLS -> [AuthService.authenticate_user]
+# @RELATION: CALLS -> [AuthService.create_session]
 @router.post("/login", response_model=Token)
 async def login_for_access_token(
     form_data: OAuth2PasswordRequestForm = Depends(),
@@ -64,6 +66,7 @@ async def login_for_access_token(
 # @POST:    Returns the current user's data.
 # @PARAM:   current_user (UserSchema) - The user extracted from the token.
 # @RETURN:  UserSchema - The current user profile.
+# @RELATION: DEPENDS_ON -> [get_current_user]
 @router.get("/me", response_model=UserSchema)
 async def read_users_me(current_user: UserSchema = Depends(get_current_user)):
     with belief_scope("api.auth.me"):
@@ -75,6 +78,8 @@ async def read_users_me(current_user: UserSchema = Depends(get_current_user)):
 # @PURPOSE: Logs out the current user (placeholder for session revocation).
 # @PRE:     Valid JWT token provided.
 # @POST:    Returns success message.
+# @PARAM:   current_user (UserSchema) - The user extracted from the token.
+# @RELATION: DEPENDS_ON -> [get_current_user]
 @router.post("/logout")
 async def logout(current_user: UserSchema = Depends(get_current_user)):
     with belief_scope("api.auth.logout"):
@@ -88,6 +93,7 @@ async def logout(current_user: UserSchema = Depends(get_current_user)):
 # @COMPLEXITY: 3
 # @PURPOSE: Initiates the ADFS OIDC login flow.
 # @POST:    Redirects the user to ADFS.
+# @RELATION: USES -> [is_adfs_configured]
 @router.get("/login/adfs")
 async def login_adfs(request: starlette.requests.Request):
     with belief_scope("api.auth.login_adfs"):
@@ -104,6 +110,8 @@ async def login_adfs(request: starlette.requests.Request):
 # @COMPLEXITY: 3
 # @PURPOSE: Handles the callback from ADFS after successful authentication.
 # @POST:    Provisions user JIT and returns session token.
+# @RELATION: CALLS -> [AuthService.provision_adfs_user]
+# @RELATION: CALLS -> [AuthService.create_session]
 @router.get("/callback/adfs", name="auth_callback_adfs")
 async def auth_callback_adfs(request: starlette.requests.Request, db: Session = Depends(get_auth_db)):
     with belief_scope("api.auth.callback_adfs"):
@@ -122,4 +130,4 @@ async def auth_callback_adfs(request: starlette.requests.Request, db: Session =
         return auth_service.create_session(user)
 # [/DEF:auth_callback_adfs:Function]
 
-# [/DEF:backend.src.api.auth:Module]
+# [/DEF:AuthApi:Module]