feat(ai): Add deletion protection with user approval workflow

Co-authored-by: dawnsystem <42047891+dawnsystem@users.noreply.github.com>
2025-12-09 00:05:21 +01:00 · 2025-11-11 14:02:20 +00:00 · 2025-11-11 14:02:20 +00:00 · 514af30306
commit 514af30306
parent 089cd1fecf
2 changed files with 383 additions and 0 deletions
--- a/src/documents/ai_deletion_manager.py
+++ b/src/documents/ai_deletion_manager.py
@ -0,0 +1,243 @@
+"""
+AI Deletion Manager for IntelliDocs-ngx
+
+This module ensures that AI cannot delete files without explicit user authorization.
+It provides a comprehensive confirmation workflow that informs users about
+what will be deleted and requires explicit approval.
+
+According to agents.md requirements:
+- AI CANNOT delete files without user validation
+- AI must inform users comprehensively about deletions
+- AI must request explicit authorization before any deletion
+"""
+
+from __future__ import annotations
+
+import logging
+from datetime import datetime
+from typing import TYPE_CHECKING, Dict, List, Optional, Any
+
+from django.conf import settings
+from django.contrib.auth.models import User
+from django.utils import timezone
+
+if TYPE_CHECKING:
+    from documents.models import Document, DeletionRequest
+
+logger = logging.getLogger("paperless.ai_deletion")
+
+
+class AIDeletionManager:
+    """
+    Manager for AI-initiated deletion requests.
+    
+    Ensures all deletions go through proper user approval workflow.
+    """
+    
+    @staticmethod
+    def create_deletion_request(
+        documents: List,
+        reason: str,
+        user: User,
+        impact_analysis: Optional[Dict[str, Any]] = None,
+    ):
+        """
+        Create a new deletion request that requires user approval.
+        
+        Args:
+            documents: List of documents to be deleted
+            reason: Detailed explanation from AI
+            user: User who must approve
+            impact_analysis: Optional detailed impact analysis
+            
+        Returns:
+            Created DeletionRequest instance
+        """
+        from documents.models import DeletionRequest
+        
+        # Analyze impact if not provided
+        if impact_analysis is None:
+            impact_analysis = AIDeletionManager._analyze_impact(documents)
+        
+        # Create request
+        request = DeletionRequest.objects.create(
+            requested_by_ai=True,
+            ai_reason=reason,
+            user=user,
+            status=DeletionRequest.STATUS_PENDING,
+            impact_summary=impact_analysis,
+        )
+        
+        # Add documents
+        request.documents.set(documents)
+        
+        logger.info(
+            f"Created deletion request {request.id} for {len(documents)} documents "
+            f"requiring approval from user {user.username}"
+        )
+        
+        # TODO: Send notification to user about pending deletion request
+        # This could be via email, in-app notification, or both
+        
+        return request
+    
+    @staticmethod
+    def _analyze_impact(documents: List) -> Dict[str, Any]:
+        """
+        Analyze the impact of deleting the given documents.
+        
+        Returns comprehensive information about what will be affected.
+        """
+        impact = {
+            "document_count": len(documents),
+            "total_size_bytes": 0,
+            "documents": [],
+            "affected_tags": set(),
+            "affected_correspondents": set(),
+            "affected_types": set(),
+            "date_range": {
+                "earliest": None,
+                "latest": None,
+            },
+        }
+        
+        for doc in documents:
+            # Document details
+            doc_info = {
+                "id": doc.id,
+                "title": doc.title,
+                "created": doc.created.isoformat() if doc.created else None,
+                "correspondent": doc.correspondent.name if doc.correspondent else None,
+                "document_type": doc.document_type.name if doc.document_type else None,
+                "tags": [tag.name for tag in doc.tags.all()],
+            }
+            impact["documents"].append(doc_info)
+            
+            # Track size (if available)
+            # Note: This would need actual file size tracking
+            
+            # Track affected metadata
+            if doc.correspondent:
+                impact["affected_correspondents"].add(doc.correspondent.name)
+            
+            if doc.document_type:
+                impact["affected_types"].add(doc.document_type.name)
+            
+            for tag in doc.tags.all():
+                impact["affected_tags"].add(tag.name)
+            
+            # Track date range
+            if doc.created:
+                if impact["date_range"]["earliest"] is None or doc.created < impact["date_range"]["earliest"]:
+                    impact["date_range"]["earliest"] = doc.created
+                
+                if impact["date_range"]["latest"] is None or doc.created > impact["date_range"]["latest"]:
+                    impact["date_range"]["latest"] = doc.created
+        
+        # Convert sets to lists for JSON serialization
+        impact["affected_tags"] = list(impact["affected_tags"])
+        impact["affected_correspondents"] = list(impact["affected_correspondents"])
+        impact["affected_types"] = list(impact["affected_types"])
+        
+        # Convert dates to ISO format
+        if impact["date_range"]["earliest"]:
+            impact["date_range"]["earliest"] = impact["date_range"]["earliest"].isoformat()
+        if impact["date_range"]["latest"]:
+            impact["date_range"]["latest"] = impact["date_range"]["latest"].isoformat()
+        
+        return impact
+    
+    @staticmethod
+    def get_pending_requests(user: User) -> List:
+        """
+        Get all pending deletion requests for a user.
+        
+        Args:
+            user: User to get requests for
+            
+        Returns:
+            List of pending DeletionRequest instances
+        """
+        from documents.models import DeletionRequest
+        
+        return list(
+            DeletionRequest.objects.filter(
+                user=user,
+                status=DeletionRequest.STATUS_PENDING,
+            )
+        )
+    
+    @staticmethod
+    def format_deletion_request_for_user(request) -> str:
+        """
+        Format a deletion request into a human-readable message.
+        
+        This provides comprehensive information to the user about what
+        will be deleted, as required by agents.md.
+        
+        Args:
+            request: DeletionRequest to format
+            
+        Returns:
+            Formatted message string
+        """
+        impact = request.impact_summary
+        
+        message = f"""
+===========================================
+AI DELETION REQUEST #{request.id}
+===========================================
+
+REASON:
+{request.ai_reason}
+
+IMPACT SUMMARY:
+- Number of documents: {impact.get('document_count', 0)}
+- Affected tags: {', '.join(impact.get('affected_tags', [])) or 'None'}
+- Affected correspondents: {', '.join(impact.get('affected_correspondents', [])) or 'None'}
+- Affected document types: {', '.join(impact.get('affected_types', [])) or 'None'}
+
+DATE RANGE:
+- Earliest: {impact.get('date_range', {}).get('earliest', 'Unknown')}
+- Latest: {impact.get('date_range', {}).get('latest', 'Unknown')}
+
+DOCUMENTS TO BE DELETED:
+"""
+        
+        for i, doc in enumerate(impact.get('documents', []), 1):
+            message += f"""
+{i}. ID: {doc['id']} - {doc['title']}
+   Created: {doc['created']}
+   Correspondent: {doc['correspondent'] or 'None'}
+   Type: {doc['document_type'] or 'None'}
+   Tags: {', '.join(doc['tags']) or 'None'}
+"""
+        
+        message += """
+===========================================
+
+REQUIRED ACTION:
+This deletion request requires your explicit approval.
+No files will be deleted until you confirm this action.
+
+Please review the above information carefully before
+approving or rejecting this request.
+"""
+        
+        return message
+    
+    @staticmethod
+    def can_ai_delete_automatically() -> bool:
+        """
+        Check if AI is allowed to delete automatically.
+        
+        According to agents.md, AI should NEVER delete without user approval.
+        This method always returns False as a safety measure.
+        
+        Returns:
+            Always False - AI cannot auto-delete
+        """
+        return False
+
+
+__all__ = ['AIDeletionManager']
--- a/src/documents/models.py
+++ b/src/documents/models.py
@ -1581,3 +1581,143 @@ class WorkflowRun(SoftDeleteModel):

    def __str__(self):
        return f"WorkflowRun of {self.workflow} at {self.run_at} on {self.document}"
+
+
+class DeletionRequest(models.Model):
+    """
+    Model to track AI-initiated deletion requests requiring user approval.
+    
+    This ensures no documents are deleted without explicit user consent,
+    implementing the safety requirement from agents.md.
+    """
+    
+    # Request metadata
+    created_at = models.DateTimeField(auto_now_add=True)
+    updated_at = models.DateTimeField(auto_now=True)
+    
+    # Requester (AI system)
+    requested_by_ai = models.BooleanField(default=True)
+    ai_reason = models.TextField(
+        help_text=_("Detailed explanation from AI about why deletion is recommended")
+    )
+    
+    # User who must approve
+    user = models.ForeignKey(
+        User,
+        on_delete=models.CASCADE,
+        related_name='deletion_requests',
+        help_text=_("User who must approve this deletion"),
+    )
+    
+    # Status tracking
+    STATUS_PENDING = 'pending'
+    STATUS_APPROVED = 'approved'
+    STATUS_REJECTED = 'rejected'
+    STATUS_CANCELLED = 'cancelled'
+    STATUS_COMPLETED = 'completed'
+    
+    STATUS_CHOICES = [
+        (STATUS_PENDING, _('Pending')),
+        (STATUS_APPROVED, _('Approved')),
+        (STATUS_REJECTED, _('Rejected')),
+        (STATUS_CANCELLED, _('Cancelled')),
+        (STATUS_COMPLETED, _('Completed')),
+    ]
+    
+    status = models.CharField(
+        max_length=20,
+        choices=STATUS_CHOICES,
+        default=STATUS_PENDING,
+    )
+    
+    # Documents to be deleted
+    documents = models.ManyToManyField(
+        Document,
+        related_name='deletion_requests',
+        help_text=_("Documents that would be deleted if approved"),
+    )
+    
+    # Impact summary (JSON field with details)
+    impact_summary = models.JSONField(
+        default=dict,
+        help_text=_("Summary of what will be affected by this deletion"),
+    )
+    
+    # Approval tracking
+    reviewed_at = models.DateTimeField(null=True, blank=True)
+    reviewed_by = models.ForeignKey(
+        User,
+        on_delete=models.SET_NULL,
+        null=True,
+        blank=True,
+        related_name='reviewed_deletion_requests',
+        help_text=_("User who reviewed and approved/rejected"),
+    )
+    review_comment = models.TextField(
+        blank=True,
+        help_text=_("User's comment when reviewing"),
+    )
+    
+    # Completion tracking
+    completed_at = models.DateTimeField(null=True, blank=True)
+    completion_details = models.JSONField(
+        default=dict,
+        help_text=_("Details about the deletion execution"),
+    )
+    
+    class Meta:
+        ordering = ['-created_at']
+        verbose_name = _("deletion request")
+        verbose_name_plural = _("deletion requests")
+        indexes = [
+            models.Index(fields=['status', 'user']),
+            models.Index(fields=['created_at']),
+        ]
+    
+    def __str__(self):
+        doc_count = self.documents.count()
+        return f"Deletion Request {self.id} - {doc_count} documents - {self.status}"
+    
+    def approve(self, user: User, comment: str = "") -> bool:
+        """
+        Approve the deletion request.
+        
+        Args:
+            user: User approving the request
+            comment: Optional comment from user
+            
+        Returns:
+            True if approved successfully
+        """
+        if self.status != self.STATUS_PENDING:
+            return False
+        
+        self.status = self.STATUS_APPROVED
+        self.reviewed_by = user
+        self.reviewed_at = timezone.now()
+        self.review_comment = comment
+        self.save()
+        
+        return True
+    
+    def reject(self, user: User, comment: str = "") -> bool:
+        """
+        Reject the deletion request.
+        
+        Args:
+            user: User rejecting the request
+            comment: Optional comment from user
+            
+        Returns:
+            True if rejected successfully
+        """
+        if self.status != self.STATUS_PENDING:
+            return False
+        
+        self.status = self.STATUS_REJECTED
+        self.reviewed_by = user
+        self.reviewed_at = timezone.now()
+        self.review_comment = comment
+        self.save()
+        
+        return True