full-stack-fastapi-template/src/backend/app/api/deps.py

from typing import Annotated, Generator

from fastapi import Depends, HTTPException, status
from fastapi.security import OAuth2PasswordBearer
from jose import jwt
from pydantic import ValidationError
from sqlmodel import Session

from app.core import security
from app.core.config import settings
from app.db.engine import engine
from app.models import TokenPayload, User

reusable_oauth2 = OAuth2PasswordBearer(
    tokenUrl=f"{settings.API_V1_STR}/login/access-token"
)


def get_db() -> Generator:
    with Session(engine) as session:
        yield session


SessionDep = Annotated[Session, Depends(get_db)]
TokenDep = Annotated[str, Depends(reusable_oauth2)]


def get_current_user(session: SessionDep, token: TokenDep) -> User:
    try:
        payload = jwt.decode(
            token, settings.SECRET_KEY, algorithms=[security.ALGORITHM]
        )
        token_data = TokenPayload(**payload)
    except (jwt.JWTError, ValidationError):
        raise HTTPException(
            status_code=status.HTTP_403_FORBIDDEN,
            detail="Could not validate credentials",
        )
    user = session.get(User, token_data.sub)
    if not user:
        raise HTTPException(status_code=404, detail="User not found")
    if not user.is_active:
        raise HTTPException(status_code=400, detail="Inactive user")
    return user


CurrentUser = Annotated[User, Depends(get_current_user)]


def get_current_active_superuser(current_user: CurrentUser) -> User:
    if not current_user.is_superuser:
        raise HTTPException(
            status_code=400, detail="The user doesn't have enough privileges"
        )
    return current_user
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`from typing import Annotated, Generator`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00
			`from fastapi import Depends, HTTPException, status`
			`from fastapi.security import OAuth2PasswordBearer`
			`from jose import jwt`
			`from pydantic import ValidationError`
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`from sqlmodel import Session`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00
			`from app.core import security`
			`from app.core.config import settings`
✨ Adopt SQLModel, create models, start using it (#559) * 🔥 Remove old SQLAlchemy models * ✨ Add new SQLModel models * 🔧 Update Alembic configs to work with SQLModel * ✨ Re-generate initial Alembic migration * 🔧 Update PostgreSQL driver connection string URL * ✨ Create new SQLModel engine * 🔥 Remove old unneeded SQLAlchemy-specific files * ♻️ Update init_db * ♻️ Use new SQLModel session * ♻️ Update conftest with new DB Session * ♻️ Update pre-start scripts to use SQLModel session * ♻️ Import new SQLModel models * ✨ Create new simplified create_user crud util * ♻️ Update import in CRUDBase class (soon to be removed) * 🙈 Update .gitignore with Python files 2023-11-25 00:08:22 +01:00			`from app.db.engine import engine`
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`from app.models import TokenPayload, User`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00
			`reusable_oauth2 = OAuth2PasswordBearer(`
			`tokenUrl=f"{settings.API_V1_STR}/login/access-token"`
			`)`


			`def get_db() -> Generator:`
✨ Adopt SQLModel, create models, start using it (#559) * 🔥 Remove old SQLAlchemy models * ✨ Add new SQLModel models * 🔧 Update Alembic configs to work with SQLModel * ✨ Re-generate initial Alembic migration * 🔧 Update PostgreSQL driver connection string URL * ✨ Create new SQLModel engine * 🔥 Remove old unneeded SQLAlchemy-specific files * ♻️ Update init_db * ♻️ Use new SQLModel session * ♻️ Update conftest with new DB Session * ♻️ Update pre-start scripts to use SQLModel session * ♻️ Import new SQLModel models * ✨ Create new simplified create_user crud util * ♻️ Update import in CRUDBase class (soon to be removed) * 🙈 Update .gitignore with Python files 2023-11-25 00:08:22 +01:00			`with Session(engine) as session:`
			`yield session`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00

♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`SessionDep = Annotated[Session, Depends(get_db)]`
			`TokenDep = Annotated[str, Depends(reusable_oauth2)]`


			`def get_current_user(session: SessionDep, token: TokenDep) -> User:`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00			`try:`
			`payload = jwt.decode(`
			`token, settings.SECRET_KEY, algorithms=[security.ALGORITHM]`
			`)`
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`token_data = TokenPayload(**payload)`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00			`except (jwt.JWTError, ValidationError):`
			`raise HTTPException(`
			`status_code=status.HTTP_403_FORBIDDEN,`
			`detail="Could not validate credentials",`
			`)`
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00			`user = session.get(User, token_data.sub)`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00			`if not user:`
			`raise HTTPException(status_code=404, detail="User not found")`
✨ Update code for login API (#571) * ✨ Update models for login API * ✨ Add authenticate simplified CRUD * ♻️ Refactor get_current_user dependency, integrate is_active * ✨ Refactor and upgrade login API code 2023-12-27 19:06:47 +01:00			`if not user.is_active:`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00			`raise HTTPException(status_code=400, detail="Inactive user")`
✨ Update code for login API (#571) * ✨ Update models for login API * ✨ Add authenticate simplified CRUD * ♻️ Refactor get_current_user dependency, integrate is_active * ✨ Refactor and upgrade login API code 2023-12-27 19:06:47 +01:00			`return user`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00

✨ Update code for login API (#571) * ✨ Update models for login API * ✨ Add authenticate simplified CRUD * ♻️ Refactor get_current_user dependency, integrate is_active * ✨ Refactor and upgrade login API code 2023-12-27 19:06:47 +01:00			`CurrentUser = Annotated[User, Depends(get_current_user)]`
♻️ Refactor Users API and dependencies (#561) Co-authored-by: Sebastián Ramírez <tiangolo@gmail.com> 2023-11-29 12:13:15 -05:00

			`def get_current_active_superuser(current_user: CurrentUser) -> User:`
			`if not current_user.is_superuser:`
:recycle: Refactor backend, settings, DB sessions, types, configs, plugins (#158) * :recycle: Refactor backend, update DB session handling * :sparkles: Add mypy config and plugins * :heavy_plus_sign: Use Python-jose instead of PyJWT as it has some extra functionalities and features * :sparkles: Add/update scripts for test, lint, format * :wrench: Update lint and format configs * :art: Update import format, comments, and types * :art: Add types to config * :sparkles: Add types for all the code, and small fixes * :art: Use global imports to simplify exploring with Jupyter * :recycle: Import schemas and models, instead of each class * :truck: Rename db_session to db for simplicity * :pushpin: Update dependencies installation for testing 2020-04-20 19:03:13 +02:00			`raise HTTPException(`
			`status_code=400, detail="The user doesn't have enough privileges"`
			`)`
			`return current_user`