Chore: Refractor Models into organized file/folder

gatehouse_app/models/__init__.py

@@ -1,76 +1,150 @@
-"""Models package."""
-from gatehouse_app.models.base import BaseModel
-from gatehouse_app.models.user import User
-from gatehouse_app.models.organization import Organization
-from gatehouse_app.models.organization_member import OrganizationMember
-from gatehouse_app.models.authentication_method import (
+"""Models package.
+
+Sub-packages
+------------
+models.user         — User, Session
+models.organization — Organization, OrganizationMember, Department,
+                      DepartmentMembership, DepartmentPrincipal,
+                      DepartmentCertPolicy, Principal, PrincipalMembership,
+                      OrgInviteToken
+models.auth         — AuthenticationMethod, ApplicationProviderConfig,
+                      OrganizationProviderOverride, OAuthState,
+                      AuditLog, PasswordResetToken, EmailVerificationToken
+models.oidc         — OIDCClient, OIDCAuthCode, OIDCRefreshToken, OIDCSession,
+                      OIDCTokenMetadata, OIDCAuditLog, OidcJwksKey
+models.ssh_ca       — CA, KeyType, CertType, CaType, CAPermission,
+                      SSHKey, SSHCertificate, CertificateStatus,
+                      CertificateAuditLog
+models.security     — OrganizationSecurityPolicy, UserSecurityPolicy,
+                      MfaPolicyCompliance
+
+All names are re-exported here so that existing code using the flat import
+style (``from gatehouse_app.models import X``) or the old per-file style
+(``from gatehouse_app.models.user import User``) continue to work unchanged.
+"""
+
+# ── Base ──────────────────────────────────────────────────────────────────────
+from gatehouse_app.models.base import BaseModel  # noqa: F401
+
+# ── User ──────────────────────────────────────────────────────────────────────
+from gatehouse_app.models.user.user import User  # noqa: F401
+from gatehouse_app.models.user.session import Session  # noqa: F401
+
+# ── Organization ──────────────────────────────────────────────────────────────
+from gatehouse_app.models.organization.organization import Organization  # noqa: F401
+from gatehouse_app.models.organization.organization_member import (  # noqa: F401
+    OrganizationMember,
+)
+from gatehouse_app.models.organization.department import (  # noqa: F401
+    Department,
+    DepartmentMembership,
+    DepartmentPrincipal,
+)
+from gatehouse_app.models.organization.department_cert_policy import (  # noqa: F401
+    DepartmentCertPolicy,
+    STANDARD_EXTENSIONS,
+)
+from gatehouse_app.models.organization.principal import (  # noqa: F401
+    Principal,
+    PrincipalMembership,
+)
+from gatehouse_app.models.organization.org_invite_token import OrgInviteToken  # noqa: F401
+
+# ── Auth ──────────────────────────────────────────────────────────────────────
+from gatehouse_app.models.auth.authentication_method import (  # noqa: F401
     AuthenticationMethod,
     ApplicationProviderConfig,
     OrganizationProviderOverride,
     OAuthState,
 )
-from gatehouse_app.models.session import Session
-from gatehouse_app.models.audit_log import AuditLog
-from gatehouse_app.models.oidc_client import OIDCClient
-from gatehouse_app.models.oidc_authorization_code import OIDCAuthCode
-from gatehouse_app.models.oidc_refresh_token import OIDCRefreshToken
-from gatehouse_app.models.oidc_session import OIDCSession
-from gatehouse_app.models.oidc_token_metadata import OIDCTokenMetadata
-from gatehouse_app.models.oidc_audit_log import OIDCAuditLog
-from gatehouse_app.models.organization_security_policy import OrganizationSecurityPolicy
-from gatehouse_app.models.user_security_policy import UserSecurityPolicy
-from gatehouse_app.models.mfa_policy_compliance import MfaPolicyCompliance
-from gatehouse_app.models.department import (
-    Department,
-    DepartmentMembership,
-    DepartmentPrincipal,
+from gatehouse_app.models.auth.audit_log import AuditLog  # noqa: F401
+from gatehouse_app.models.auth.password_reset_token import PasswordResetToken  # noqa: F401
+from gatehouse_app.models.auth.email_verification_token import (  # noqa: F401
+    EmailVerificationToken,
 )
-from gatehouse_app.models.principal import (
-    Principal,
-    PrincipalMembership,
+
+# ── OIDC ──────────────────────────────────────────────────────────────────────
+from gatehouse_app.models.oidc.oidc_client import OIDCClient  # noqa: F401
+from gatehouse_app.models.oidc.oidc_authorization_code import OIDCAuthCode  # noqa: F401
+from gatehouse_app.models.oidc.oidc_refresh_token import OIDCRefreshToken  # noqa: F401
+from gatehouse_app.models.oidc.oidc_session import OIDCSession  # noqa: F401
+from gatehouse_app.models.oidc.oidc_token_metadata import OIDCTokenMetadata  # noqa: F401
+from gatehouse_app.models.oidc.oidc_audit_log import OIDCAuditLog  # noqa: F401
+from gatehouse_app.models.oidc.oidc_jwks_key import OidcJwksKey  # noqa: F401
+
+# ── SSH / CA ──────────────────────────────────────────────────────────────────
+from gatehouse_app.models.ssh_ca.ca import (  # noqa: F401
+    CA,
+    KeyType,
+    CertType,
+    CaType,
+    CAPermission,
+)
+from gatehouse_app.models.ssh_ca.ssh_key import SSHKey  # noqa: F401
+from gatehouse_app.models.ssh_ca.ssh_certificate import (  # noqa: F401
+    SSHCertificate,
+    CertificateStatus,
+)
+from gatehouse_app.models.ssh_ca.certificate_audit_log import (  # noqa: F401
+    CertificateAuditLog,
+)
+
+# ── Security ──────────────────────────────────────────────────────────────────
+from gatehouse_app.models.security.organization_security_policy import (  # noqa: F401
+    OrganizationSecurityPolicy,
+)
+from gatehouse_app.models.security.user_security_policy import (  # noqa: F401
+    UserSecurityPolicy,
+)
+from gatehouse_app.models.security.mfa_policy_compliance import (  # noqa: F401
+    MfaPolicyCompliance,
 )
-from gatehouse_app.models.ssh_key import SSHKey
-from gatehouse_app.models.ca import CA, KeyType, CertType, CAPermission
-from gatehouse_app.models.ssh_certificate import SSHCertificate, CertificateStatus
-from gatehouse_app.models.certificate_audit_log import CertificateAuditLog
-from gatehouse_app.models.password_reset_token import PasswordResetToken
-from gatehouse_app.models.email_verification_token import EmailVerificationToken
-from gatehouse_app.models.org_invite_token import OrgInviteToken
 
 __all__ = [
+    # Base
     "BaseModel",
+    # User
     "User",
+    "Session",
+    # Organization
     "Organization",
     "OrganizationMember",
+    "Department",
+    "DepartmentMembership",
+    "DepartmentPrincipal",
+    "DepartmentCertPolicy",
+    "STANDARD_EXTENSIONS",
+    "Principal",
+    "PrincipalMembership",
+    "OrgInviteToken",
+    # Auth
     "AuthenticationMethod",
     "ApplicationProviderConfig",
     "OrganizationProviderOverride",
     "OAuthState",
-    "Session",
     "AuditLog",
+    "PasswordResetToken",
+    "EmailVerificationToken",
+    # OIDC
     "OIDCClient",
     "OIDCAuthCode",
     "OIDCRefreshToken",
     "OIDCSession",
     "OIDCTokenMetadata",
     "OIDCAuditLog",
-    "OrganizationSecurityPolicy",
-    "UserSecurityPolicy",
-    "MfaPolicyCompliance",
-    "Department",
-    "DepartmentMembership",
-    "DepartmentPrincipal",
-    "Principal",
-    "PrincipalMembership",
-    "SSHKey",
+    "OidcJwksKey",
+    # SSH / CA
     "CA",
     "KeyType",
     "CertType",
+    "CaType",
     "CAPermission",
+    "SSHKey",
     "SSHCertificate",
     "CertificateStatus",
     "CertificateAuditLog",
-    "PasswordResetToken",
-    "EmailVerificationToken",
-    "OrgInviteToken",
+    # Security
+    "OrganizationSecurityPolicy",
+    "UserSecurityPolicy",
+    "MfaPolicyCompliance",
 ]