fin-infra

Banking Integration Guide

fin-infra provides unified interfaces for connecting to users' bank accounts, fetching transactions, balances, and identity information through various banking aggregation providers.

πŸ“‹ Table of Contents

Supported Providers

βœ… Production Ready

  • Teller (Default) - Certificate-based mTLS authentication, free tier (100 connections/month)
  • Plaid (Alternate) - Industry standard, OAuth-based, sandbox free

🚧 Coming Soon

  • MX - Enterprise-grade aggregation
  • Finicity - Mastercard-backed aggregation

Quick Start

python
from fin_infra.banking import easy_banking

# Auto-detects provider and credentials from environment
banking = easy_banking()

# Use immediately
accounts = banking.accounts(access_token="user_token")
transactions = banking.transactions(
    access_token="user_token",
    start_date="2025-01-01",
    end_date="2025-01-31"
)

Explicit Provider

python
# Use Teller (default)
banking = easy_banking(provider="teller")

# Use Plaid
banking = easy_banking(provider="plaid")

Manual Configuration

python
from fin_infra.providers.banking.teller_client import TellerClient

# Teller with certificates
teller = TellerClient(
    cert_path="./teller_certificate.pem",
    key_path="./teller_private_key.pem",
    environment="sandbox"  # or "production"
)

Provider Comparison

FeatureTellerPlaidMX
Pricingβœ… Free 100 conn/mo
$0.25 after		❌ $0.10-0.30/conn/mo
Min: $100-500/mo		πŸ’° Enterprise only
Contact sales
Auth MethodπŸ” mTLS CertificatesπŸ”‘ OAuth (client_id + secret)πŸ”‘ OAuth
CoverageπŸ‡ΊπŸ‡Έ US-only (4,000+ banks)🌍 US, CA, UK, EU (12,000+)🌍 16,000+ institutions
Setup Time⚑ 5-10 minutes⚑ 10-15 minutes🐌 Days (sales process)
Best ForMVP, startups, US-onlyProduction, internationalEnterprise

Authentication

Teller (Certificate-Based mTLS)

Why certificates instead of API keys?

  • πŸ” Mutual TLS (mTLS): Both client and server verify each other's identity
  • βœ… More secure: Compromised API keys = full access; compromised cert = server can revoke
  • 🚫 No secrets in URLs: Certificates never appear in logs/URLs
  • 🎯 Defense in depth: Certificate + private key required (two-factor at infrastructure level)

Setup Steps:

  1. Generate Certificate Signing Request (CSR)

    bash
    cd ~/secure-certs  # Outside git repo!
openssl req -new -newkey rsa:2048 -nodes \
  -keyout teller_private_key.pem \
  -out teller_request.csr

  2. Submit CSR to Teller

    • Login to Teller dashboard β†’ API Settings β†’ Upload CSR
    • Download signed certificate: teller_certificate.pem

  3. Store Certificates Securely

    bash
    # Development: Project root (gitignored)
cp teller_certificate.pem /path/to/fin-infra/
cp teller_private_key.pem /path/to/fin-infra/

# Production: Environment variables pointing to secure storage
export TELLER_CERTIFICATE_PATH="/run/secrets/teller.pem"
export TELLER_PRIVATE_KEY_PATH="/run/secrets/teller.key"

  4. Configure Environment

    bash
    # .env (never commit!)
TELLER_CERTIFICATE_PATH=./teller_certificate.pem
TELLER_PRIVATE_KEY_PATH=./teller_private_key.pem
TELLER_ENVIRONMENT=sandbox  # or production

⚠️ SECURITY CRITICAL: Never commit .pem or .key files to git! See SECURITY.md for emergency procedures if certificates are leaked.

Plaid (OAuth API Keys)

Setup Steps:

  1. Get Credentials

  2. Configure Environment

    bash
    # .env (never commit!)
PLAID_CLIENT_ID=your_client_id
PLAID_SECRET=your_secret
PLAID_ENVIRONMENT=sandbox  # sandbox, development, production

  3. Initialize

    python
    from fin_infra.banking import easy_banking

plaid = easy_banking(provider="plaid")

Environment Variables

Teller (Default Provider)

bash
TELLER_CERTIFICATE_PATH=./teller_certificate.pem  # Path to signed certificate
TELLER_PRIVATE_KEY_PATH=./teller_private_key.pem  # Path to private key
TELLER_ENVIRONMENT=sandbox                        # sandbox | production

Plaid (Alternate Provider)

bash
PLAID_CLIENT_ID=your_client_id_here
PLAID_SECRET=your_secret_here
PLAID_ENVIRONMENT=sandbox  # sandbox | development | production

Auto-Detection Logic

easy_banking() checks in order:

  1. TELLER_CERTIFICATE_PATH exists β†’ Use Teller
  2. PLAID_CLIENT_ID set β†’ Use Plaid
  3. Fallback: Error (no credentials found)

Core Operations

1. Fetch Accounts

python
from fin_infra.banking import easy_banking

banking = easy_banking()

# Get all accounts for user
accounts = banking.accounts(access_token="user_access_token")

for account in accounts:
    print(f"{account.name}: {account.balance} {account.currency}")
    print(f"Type: {account.type}")  # checking, savings, credit_card, etc.
    print(f"Institution: {account.institution_name}")

Response Model:

python
from fin_infra.models import BankAccount

# Pydantic model with validation
account = BankAccount(
    id="acc_123",
    name="My Checking",
    official_name="Premium Checking Account",
    type="depository",
    subtype="checking",
    balance=5432.10,
    currency="USD",
    institution_id="ins_001",
    institution_name="Chase Bank"
)

2. Fetch Transactions

python
from datetime import date, timedelta

banking = easy_banking()

# Last 30 days
end_date = date.today()
start_date = end_date - timedelta(days=30)

transactions = banking.transactions(
    access_token="user_access_token",
    start_date=start_date.isoformat(),
    end_date=end_date.isoformat()
)

for txn in transactions:
    print(f"{txn.date}: {txn.description} - ${txn.amount}")
    print(f"Category: {txn.category}")
    print(f"Merchant: {txn.merchant_name}")

Response Model:

python
from fin_infra.models import Transaction

txn = Transaction(
    id="txn_123",
    account_id="acc_123",
    amount=-45.67,  # Negative = debit, Positive = credit
    date="2025-01-15",
    description="STARBUCKS #12345",
    merchant_name="Starbucks",
    category="Food & Drink",
    pending=False,
    currency="USD"
)

3. Fetch Identity (PII)

python
# ⚠️ Handle PII carefully - see Security section
identity = banking.identity(access_token="user_access_token")

for owner in identity.owners:
    print(f"Name: {owner.name}")
    print(f"Email: {owner.email}")
    print(f"Phone: {owner.phone}")
    print(f"Address: {owner.address}")

4. Fetch Balances (Quick Update)

python
# Lightweight call for balance updates only
balances = banking.balances(access_token="user_access_token")

for bal in balances:
    print(f"Account {bal.account_id}: ${bal.current}")
    print(f"Available: ${bal.available}")

FastAPI Integration

Basic Setup (Using svc-infra)

python
from fastapi import FastAPI, Depends, HTTPException
from svc_infra.api.fastapi.ease import easy_service_app
from svc_infra.cache import init_cache
from fin_infra.banking import easy_banking

# Backend from svc-infra
app = easy_service_app(name="BankingAPI")
init_cache(url="redis://localhost")

# Financial provider from fin-infra
banking = easy_banking()

@app.get("/accounts")
async def get_accounts(access_token: str):
    """Fetch user's bank accounts"""
    try:
        accounts = banking.accounts(access_token=access_token)
        return {"accounts": accounts}
    except Exception as e:
        raise HTTPException(status_code=400, detail=str(e))

@app.get("/transactions")
async def get_transactions(
    access_token: str,
    start_date: str,
    end_date: str
):
    """Fetch user's transactions"""
    txns = banking.transactions(
        access_token=access_token,
        start_date=start_date,
        end_date=end_date
    )
    return {"transactions": txns}

With Caching (svc-infra)

python
from svc_infra.cache import cache_read, cache_write, resource

# Define cached resource
bank = resource("bank_account", "user_id")

@app.get("/accounts/{user_id}")
@bank.cache_read(ttl=300, suffix="accounts")  # 5 min cache
async def get_cached_accounts(user_id: str, access_token: str):
    """Cached account fetch"""
    return banking.accounts(access_token=access_token)

@app.post("/accounts/{user_id}/refresh")
@bank.cache_write(tags=["accounts"], recache=[...])
async def refresh_accounts(user_id: str, access_token: str):
    """Invalidate cache and refresh"""
    return banking.accounts(access_token=access_token)

With Auth (svc-infra)

python
from svc_infra.api.fastapi.auth.add import add_auth_users
from svc_infra.api.fastapi.auth.dependencies import get_current_user

# Add auth to app
add_auth_users(app, ...)

@app.get("/me/accounts")
async def my_accounts(user = Depends(get_current_user)):
    """Get current user's accounts"""
    # Retrieve access_token from user's encrypted storage
    access_token = decrypt_token(user.bank_token_encrypted)
    return banking.accounts(access_token=access_token)

Easy Add Banking (One-Liner Setup)

python
from fin_infra.banking import add_banking

# βœ… Mount complete banking API with one call
banking_provider = add_banking(
    app,
    provider="teller",  # or "plaid" (optional, defaults to env)
    prefix="/banking"   # default: "/banking"
)

# Auto-generated routes (using svc-infra dual routers):
# POST   /banking/link            - Create Plaid Link token or Teller enrollment URL
# POST   /banking/exchange        - Exchange public token for access token
# GET    /banking/accounts        - Fetch user's bank accounts
# GET    /banking/transactions    - Fetch transactions with date range
# GET    /banking/balances        - Fetch account balances only
# GET    /banking/identity        - Fetch identity/owner information (PII)

# Landing page card automatically registered at /banking/docs
# OpenAPI schema available at /banking/openapi.json

What add_banking() Does:

  • βœ… Initializes banking provider (Teller/Plaid) with environment config
  • βœ… Mounts all 6 banking endpoints with proper request/response models
  • βœ… Uses public_router() from svc-infra (supports Bearer token auth)
  • βœ… Registers landing page documentation card
  • βœ… Stores provider instance on app.state.banking_provider
  • βœ… Returns provider for programmatic access

Integration Examples

Complete Production App (fin-infra + svc-infra)

python
from fastapi import FastAPI, HTTPException, Depends
from svc_infra.api.fastapi.ease import easy_service_app
from svc_infra.logging import setup_logging
from svc_infra.cache import init_cache
from svc_infra.obs import add_observability
from svc_infra.api.fastapi.auth.add import add_auth_users
from svc_infra.api.fastapi.auth.dependencies import get_current_user
from fin_infra.banking import add_banking, easy_banking

# 1. Setup logging (svc-infra)
setup_logging(level="INFO", fmt="json")

# 2. Create service app (svc-infra)
app = easy_service_app(
    name="FinanceAPI",
    release="production",
    api_version="v1"
)

# 3. Initialize cache (svc-infra)
init_cache(url="redis://localhost:6379", prefix="finapi", version="v1")

# 4. Add observability (svc-infra)
shutdown_obs = add_observability(
    app,
    metrics_path="/metrics",
    skip_metric_paths=["/health", "/metrics"]
)

# 5. Add auth (svc-infra)
add_auth_users(
    app,
    db_url="postgresql://user:pass@localhost/db",
    secret_key="your-secret-key",
    prefix="/auth"
)

# 6. Add banking (fin-infra) - One-liner!
banking_provider = add_banking(app, provider="teller", prefix="/banking")

# 7. Custom protected routes using banking provider
from svc_infra.cache import resource

bank_cache = resource("bank", "user_id")

@app.get("/me/accounts")
@bank_cache.cache_read(ttl=60, suffix="accounts")
async def my_accounts(user=Depends(get_current_user)):
    """Get current user's bank accounts (cached 60s)"""
    if not user.bank_access_token:
        raise HTTPException(status_code=404, detail="No bank connected")
    
    # Use banking provider from app.state or returned instance
    accounts = banking_provider.accounts(access_token=user.bank_access_token)
    return {"accounts": accounts}

@app.get("/me/transactions")
@bank_cache.cache_read(ttl=300, suffix="transactions")  # 5 min cache
async def my_transactions(
    user=Depends(get_current_user),
    start_date: str = "2025-01-01",
    end_date: str = "2025-01-31"
):
    """Get current user's transactions (cached 5min)"""
    if not user.bank_access_token:
        raise HTTPException(status_code=404, detail="No bank connected")
    
    txns = banking_provider.transactions(
        access_token=user.bank_access_token,
        start_date=start_date,
        end_date=end_date
    )
    return {"transactions": txns, "count": len(txns)}

# 8. Cleanup on shutdown
@app.on_event("shutdown")
async def shutdown_event():
    shutdown_obs()  # Cleanup observability resources

Run it:

bash
# Set environment variables
export SQL_URL="postgresql://user:pass@localhost/db"
export REDIS_URL="redis://localhost:6379"
export TELLER_CERT_PATH="/path/to/certificate.pem"
export TELLER_KEY_PATH="/path/to/private_key.key"
export APP_SECRET_KEY="your-secret-key"

# Start server
uvicorn main:app --reload

# API available at:
# - Docs: http://localhost:8000/docs
# - Banking card: http://localhost:8000/banking/docs
# - Auth endpoints: http://localhost:8000/auth/*
# - Banking endpoints: http://localhost:8000/banking/*
# - Custom endpoints: http://localhost:8000/me/accounts

Minimal Example (Just Banking)

python
from fastapi import FastAPI
from fin_infra.banking import add_banking

app = FastAPI(title="Banking API")

# One-liner setup
add_banking(app, provider="teller")

# That's it! 6 endpoints ready to use:
# POST /banking/link
# POST /banking/exchange  
# GET  /banking/accounts
# GET  /banking/transactions
# GET  /banking/balances
# GET  /banking/identity

Programmatic Usage (No FastAPI)

python
from fin_infra.banking import easy_banking

# Initialize provider
banking = easy_banking(provider="teller")

# Use directly in scripts, background jobs, etc.
access_token = "user_access_token"

accounts = banking.accounts(access_token=access_token)
for acc in accounts:
    print(f"{acc.name}: ${acc.balance}")

transactions = banking.transactions(
    access_token=access_token,
    start_date="2025-01-01",
    end_date="2025-01-31"
)
print(f"Found {len(transactions)} transactions")

With Background Jobs (svc-infra)

python
from svc_infra.jobs.easy import easy_jobs
from fin_infra.banking import easy_banking

# Setup jobs (svc-infra)
worker, scheduler = easy_jobs(app, redis_url="redis://localhost:6379")

# Banking provider
banking = easy_banking()

@worker.task
async def sync_bank_data(user_id: str, access_token: str):
    """Background job to sync bank data"""
    accounts = banking.accounts(access_token=access_token)
    transactions = banking.transactions(
        access_token=access_token,
        start_date="2025-01-01",
        end_date="2025-01-31"
    )
    
    # Store in database (using svc-infra DB utilities)
    await db.save_accounts(user_id, accounts)
    await db.save_transactions(user_id, transactions)
    
    return {"accounts": len(accounts), "transactions": len(transactions)}

# Schedule daily sync
@scheduler.scheduled_job("cron", hour=2, minute=0)  # 2 AM daily
async def daily_bank_sync():
    """Sync all users' bank data"""
    users = await db.get_users_with_banks()
    for user in users:
        await sync_bank_data.kiq(user.id, user.bank_access_token)

Security & PII

PII Classification

Data TypePII LevelGDPR/CCPAStorage Rules
Account IDLowβœ… OKDatabase OK
Account NameLowβœ… OKDatabase OK
BalanceMedium⚠️ SensitiveEncrypt at rest
TransactionsMedium⚠️ SensitiveEncrypt at rest
Identity (name, email)HighπŸ”΄ Highly SensitiveEncrypt + audit log
SSN, tax IDsCriticalπŸ”΄ Highly SensitiveNever store (pass-through only)

Storage Best Practices

βœ… DO:

python
from svc_infra.security import encrypt_field, decrypt_field

# Encrypt before storing
encrypted_token = encrypt_field(access_token, key=app_encryption_key)
await db.execute(
    "INSERT INTO user_tokens (user_id, token_encrypted) VALUES (?, ?)",
    (user_id, encrypted_token)
)

# Decrypt when using
encrypted = await db.fetchone("SELECT token_encrypted FROM user_tokens WHERE user_id = ?", (user_id,))
access_token = decrypt_field(encrypted[0], key=app_encryption_key)

❌ DON'T:

python
# Never store plaintext tokens/PII
await db.execute(
    "INSERT INTO users (user_id, access_token, ssn) VALUES (?, ?, ?)",
    (user_id, access_token, ssn)  # ❌ SECURITY VIOLATION
)

Access Token Storage

  • Encrypt at rest: Use svc-infra's encrypt_field()
  • Short TTLs: Teller tokens expire after 60 days, Plaid varies
  • Rotation: Implement token refresh flows
  • Audit logging: Log all token access (who, when, why)

Certificate Security (Teller)

  • Never commit: .pem and .key files MUST NOT be in git
  • Production storage:
    • Kubernetes: Use sealed secrets or external secret managers (AWS Secrets Manager, Vault)
    • Docker: Mount volumes with restricted permissions (chmod 600)
    • Railway/Heroku: Environment variables pointing to secure storage
  • Emergency procedures: See SECURITY.md for leak response

Compliance Helpers (svc-infra)

python
from svc_infra.data.add import add_data_lifecycle

# Auto-expire PII per retention policies
add_data_lifecycle(
    app,
    retention_policies={
        "transactions": 90,  # days
        "identity": 30
    },
    anonymization_rules={...}
)

Rate Limits

Provider Limits

ProviderRate LimitOverage
TellerNone documentedContact support
PlaidVaries by tier (typically 100-500 req/min)429 errors

svc-infra Rate Limiting

python
from svc_infra.api.fastapi.middlewares.rate_limit import SimpleRateLimit

# Protect banking endpoints
app.add_middleware(
    SimpleRateLimit,
    limit=100,  # requests
    window=60,  # seconds
    paths=["/api/v1/banking/*"]
)

Retry Logic (svc-infra)

python
from svc_infra.http import with_retries

# Auto-retry on 429/500 errors
@with_retries(max_attempts=3, backoff=2.0)
async def fetch_accounts_with_retry(access_token: str):
    return banking.accounts(access_token=access_token)

Troubleshooting

Certificate Errors (Teller)

Problem: SSLError: certificate verify failed

Solutions:

  1. Check certificate paths are correct:
    bash
    ls -la teller_certificate.pem teller_private_key.pem
  2. Verify certificate is not expired:
    bash
    openssl x509 -in teller_certificate.pem -noout -dates
  3. Ensure private key matches certificate:
    bash
    diff <(openssl x509 -in teller_certificate.pem -pubkey -noout) \
     <(openssl rsa -in teller_private_key.pem -pubout 2>/dev/null)

Missing Environment Variables

Problem: ValueError: No banking provider credentials found

Solution: Check .env file is loaded

python
# Acceptance tests auto-load .env via conftest.py
# For manual scripts:
from dotenv import load_dotenv
load_dotenv()

API Errors

Problem: 401 Unauthorized

Teller: Certificate not accepted β†’ Re-upload CSR in dashboard Plaid: Wrong environment β†’ Check PLAID_ENVIRONMENT matches token (sandbox tokens won't work in production)

Problem: 400 Bad Request - Invalid access token

Solutions:

  1. Token expired β†’ Refresh using provider's token refresh flow
  2. Token revoked β†’ User must re-authenticate
  3. Wrong provider β†’ Ensure token from Teller isn't used with Plaid client

Debugging

python
import logging

# Enable debug logging
logging.basicConfig(level=logging.DEBUG)
logging.getLogger("httpx").setLevel(logging.DEBUG)

# See all HTTP requests/responses
banking = easy_banking()
accounts = banking.accounts(access_token="...")  # Watch console for details

Common Patterns

Multi-provider fallback:

python
from fin_infra.banking import easy_banking

# Try Teller first, fallback to Plaid
try:
    banking = easy_banking(provider="teller")
except ValueError:
    banking = easy_banking(provider="plaid")

Sandbox vs Production:

python
import os

env = os.getenv("APP_ENV", "development")

if env == "production":
    os.environ["TELLER_ENVIRONMENT"] = "production"
    os.environ["PLAID_ENVIRONMENT"] = "production"
else:
    os.environ["TELLER_ENVIRONMENT"] = "sandbox"
    os.environ["PLAID_ENVIRONMENT"] = "sandbox"

banking = easy_banking()  # Auto-uses correct environment

Additional Resources

code
### Transaction
```python
from fin_infra.models.transactions import Transaction

class Transaction:
    transaction_id: str
    account_id: str
    amount: Decimal
    date: date
    name: str
    merchant_name: str | None
    category: list[str]
    pending: bool
    iso_currency_code: str

Webhooks

Handle real-time updates from banking providers:

python
from fastapi import FastAPI, Request
from fin_infra.banking.webhooks import verify_plaid_webhook

app = FastAPI()

@app.post("/webhooks/plaid")
async def plaid_webhook(request: Request):
    payload = await request.json()
    
    # Verify webhook signature
    if not verify_plaid_webhook(request.headers, payload):
        return {"error": "Invalid signature"}
    
    webhook_type = payload.get("webhook_type")
    webhook_code = payload.get("webhook_code")
    
    if webhook_type == "TRANSACTIONS":
        if webhook_code == "INITIAL_UPDATE":
            # Initial transaction data available
            pass
        elif webhook_code == "DEFAULT_UPDATE":
            # New transaction data available
            pass
        elif webhook_code == "HISTORICAL_UPDATE":
            # Historical transaction data available
            pass
    
    return {"status": "received"}

Error Handling

python
from fin_infra.banking.exceptions import (
    BankingProviderError,
    InvalidCredentialsError,
    ItemLoginRequiredError,
    RateLimitError
)

try:
    accounts = await banking.get_accounts(access_token)
except ItemLoginRequiredError:
    # User needs to re-authenticate with their bank
    link_token = await banking.create_link_token(
        user_id="user_123",
        access_token=access_token,  # Update mode
    )
except RateLimitError:
    # Implement exponential backoff
    pass
except BankingProviderError as e:
    # Handle general provider errors
    print(f"Error: {e.message}")

Transaction Filtering (Phase 2 Enhancement)

The /banking/transactions endpoint now supports advanced filtering to reduce data transfer and improve user experience:

Available Filters

python
from fin_infra.banking import add_banking

# Mount banking API
banking = add_banking(app)

# Client makes request with filters:
# GET /banking/transactions?
#   access_token=<token>
#   &start_date=2025-01-01
#   &end_date=2025-01-31
#   &min_amount=10.00
#   &max_amount=100.00
#   &merchant_name=starbucks
#   &category=Food & Drink
#   &account_id=acc_123
#   &exclude_pending=true
#   &sort_by=date
#   &sort_order=desc
#   &page=1
#   &page_size=50

Filter Parameters

ParameterTypeDescriptionExample
min_amountfloatMinimum transaction amount (absolute value)10.00
max_amountfloatMaximum transaction amount (absolute value)100.00
start_datestringStart date (ISO 8601: YYYY-MM-DD)2025-01-01
end_datestringEnd date (ISO 8601: YYYY-MM-DD)2025-01-31
merchant_namestringPartial match on merchant name (case-insensitive)starbucks
categorystringExact category matchFood & Drink
account_idstringFilter by specific accountacc_123
exclude_pendingbooleanExclude pending transactionstrue
sort_bystringSort field: date, amount, or merchantdate
sort_orderstringSort direction: asc or descdesc
pageintegerPage number (1-indexed)1
page_sizeintegerResults per page (1-200, default 50)100

Example Usage

python
from fastapi import FastAPI, Query
from fin_infra.banking import easy_banking

banking = easy_banking()

@app.get("/transactions/filtered")
async def get_filtered_transactions(
    access_token: str = Query(...),
    start_date: str = Query(...),
    end_date: str = Query(...),
    min_amount: float | None = Query(None),
    category: str | None = Query(None),
):
    """Fetch transactions with filters"""
    txns = banking.transactions(
        access_token=access_token,
        start_date=start_date,
        end_date=end_date,
        min_amount=min_amount,
        category=category,
    )
    return {"transactions": txns, "count": len(txns)}

Use Cases

1. Large Purchases Only

code
GET /banking/transactions?min_amount=500&sort_by=amount&sort_order=desc

2. Specific Merchant

code
GET /banking/transactions?merchant_name=amazon&start_date=2025-01-01

3. Budget Category Review

code
GET /banking/transactions?category=Food & Drink&start_date=2025-01-01&end_date=2025-01-31

4. Exclude Pending for Reports

code
GET /banking/transactions?exclude_pending=true&sort_by=date

Balance History Tracking (Phase 2 Enhancement)

Track daily account balance snapshots for trend analysis, net worth tracking, and financial planning.

Core Functions

python
from fin_infra.banking.history import track_balance, get_balance_history, BalanceHistory
from datetime import date

# Record a balance snapshot
track_balance(
    account_id="acc_123",
    balance=5432.10,
    date=date.today(),
    currency="USD"
)

# Retrieve balance history
history = get_balance_history(
    account_id="acc_123",
    start_date=date(2025, 1, 1),
    end_date=date(2025, 1, 31)
)

for snapshot in history:
    print(f"{snapshot.date}: ${snapshot.balance}")

Balance History Model

python
from pydantic import BaseModel
from datetime import date

class BalanceHistory(BaseModel):
    account_id: str         # Account identifier
    balance: float          # Account balance at snapshot time
    date: date             # Snapshot date
    currency: str          # Currency code (USD, EUR, etc.)

FastAPI Endpoint

The /banking/balance-history endpoint provides time-series balance data:

python
# GET /banking/balance-history?account_id=acc_123&start_date=2025-01-01&end_date=2025-01-31

# Response:
{
  "account_id": "acc_123",
  "history": [
    {"date": "2025-01-01", "balance": 5000.00, "currency": "USD"},
    {"date": "2025-01-02", "balance": 4950.00, "currency": "USD"},
    {"date": "2025-01-03", "balance": 5100.00, "currency": "USD"},
    ...
  ],
  "count": 31
}

Use Cases

1. Net Worth Tracking

python
# Track balances across all accounts daily
for account in accounts:
    track_balance(
        account_id=account.id,
        balance=account.balance,
        date=date.today(),
        currency=account.currency
    )

# Generate net worth chart
total_history = {}
for account in accounts:
    history = get_balance_history(account.id, start_date, end_date)
    for snapshot in history:
        total_history[snapshot.date] = total_history.get(snapshot.date, 0) + snapshot.balance

2. Account Trend Analysis

python
# Identify accounts with declining balances
history = get_balance_history("acc_123", start_date, end_date)
trend = "increasing" if history[-1].balance > history[0].balance else "decreasing"
change_pct = ((history[-1].balance - history[0].balance) / history[0].balance) * 100

3. Cash Flow Insights

python
# Calculate average daily balance for interest/fee calculations
history = get_balance_history("acc_123", start_date, end_date)
avg_balance = sum(h.balance for h in history) / len(history)

Production Considerations

Storage Backend: The current implementation uses in-memory storage. For production:

python
# Use svc-infra SQL for persistent storage
from svc_infra.db.sql import add_sql_db

# Add to your database models:
class BalanceHistoryModel(Base):
    __tablename__ = "balance_history"
    
    id = Column(Integer, primary_key=True)
    account_id = Column(String, index=True)
    balance = Column(Float)
    date = Column(Date, index=True)
    currency = Column(String)
    
    __table_args__ = (
        Index('idx_account_date', 'account_id', 'date'),
    )

Automated Tracking: Set up daily cron job:

python
from svc_infra.jobs import easy_jobs

# Schedule daily balance tracking
worker, scheduler = easy_jobs(app)

@scheduler.scheduled_job('cron', hour=2)  # 2 AM daily
async def track_daily_balances():
    """Record balance snapshots for all users"""
    for user in users:
        accounts = banking.accounts(user.access_token)
        for account in accounts:
            track_balance(
                account_id=account.id,
                balance=account.balance,
                date=date.today(),
                currency=account.currency
            )

Best Practices

  1. Secure Token Storage: Store access tokens encrypted in your database
  2. Rate Limiting: Implement rate limiting for API calls
  3. Webhook Handling: Use webhooks for real-time updates instead of polling
  4. Error Recovery: Implement retry logic with exponential backoff
  5. User Communication: Clearly communicate when re-authentication is needed
  6. Data Retention: Follow provider guidelines for data retention and deletion
  7. Balance History: Track balances daily for trend analysis and net worth tracking
  8. Transaction Filtering: Use filters to reduce data transfer and improve performance

Testing

python
import pytest
from fin_infra.banking import easy_banking

@pytest.mark.asyncio
async def test_get_accounts():
    banking = easy_banking()
    
    # Use sandbox credentials
    access_token = "access-sandbox-xxx"
    accounts = await banking.get_accounts(access_token)
    
    assert len(accounts) > 0
    assert accounts[0].account_id is not None

Next Steps