mirror of
https://github.com/fastapi/fastapi.git
synced 2026-01-01 18:47:55 -05:00
1f01ce9615
* Updated .py files with Optional tag (up to body_nested_models) * Update optionals * docs_src/ all updates, few I was unsure of * Updated markdown files with Optional param * es: Add Optional typing to index.md * Last of markdown files updated with Optional param * Update highlight lines * it: Add Optional typings * README.md: Update with Optional typings * Update more highlight increments * Update highlights * schema-extra-example.md: Update highlights * updating highlighting on website to reflect .py changes * Update highlighting for query-params & response-directly * Address PR comments * Get rid of unnecessary comment * ⏪ Revert Optional in Chinese docs as it probably also requires changes in text * 🎨 Apply format * ⏪ Revert modified example * ♻️ Simplify example in docs * 📝 Update OpenAPI callback example to use Optional * ✨ Add Optional types to tests * 📝 Update docs about query params, default to using Optional * 🎨 Update code examples line highlighting * 📝 Update nested models docs to use "type parameters" instead of "subtypes" * 📝 Add notes about FastAPI usage of None including: = None and = Query(None) and clarify relationship with Optional[str] * 📝 Add note about response_model_by_alias * ♻️ Simplify query param list example * 🔥 Remove test for removed example * ✅ Update test for updated example Co-authored-by: Christopher Nguyen <chrisngyn99@gmail.com> Co-authored-by: yk396 <yk396@cornell.edu> Co-authored-by: Kai Chen <kaichen120@gmail.com>
91 lines
2.4 KiB
Python
91 lines
2.4 KiB
Python
from typing import Optional
|
|
|
|
from fastapi import Depends, FastAPI, HTTPException, status
|
|
from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
|
|
from pydantic import BaseModel
|
|
|
|
fake_users_db = {
|
|
"johndoe": {
|
|
"username": "johndoe",
|
|
"full_name": "John Doe",
|
|
"email": "johndoe@example.com",
|
|
"hashed_password": "fakehashedsecret",
|
|
"disabled": False,
|
|
},
|
|
"alice": {
|
|
"username": "alice",
|
|
"full_name": "Alice Wonderson",
|
|
"email": "alice@example.com",
|
|
"hashed_password": "fakehashedsecret2",
|
|
"disabled": True,
|
|
},
|
|
}
|
|
|
|
app = FastAPI()
|
|
|
|
|
|
def fake_hash_password(password: str):
|
|
return "fakehashed" + password
|
|
|
|
|
|
oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/token")
|
|
|
|
|
|
class User(BaseModel):
|
|
username: str
|
|
email: Optional[str] = None
|
|
full_name: Optional[str] = None
|
|
disabled: Optional[bool] = None
|
|
|
|
|
|
class UserInDB(User):
|
|
hashed_password: str
|
|
|
|
|
|
def get_user(db, username: str):
|
|
if username in db:
|
|
user_dict = db[username]
|
|
return UserInDB(**user_dict)
|
|
|
|
|
|
def fake_decode_token(token):
|
|
# This doesn't provide any security at all
|
|
# Check the next version
|
|
user = get_user(fake_users_db, token)
|
|
return user
|
|
|
|
|
|
async def get_current_user(token: str = Depends(oauth2_scheme)):
|
|
user = fake_decode_token(token)
|
|
if not user:
|
|
raise HTTPException(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
detail="Invalid authentication credentials",
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
)
|
|
return user
|
|
|
|
|
|
async def get_current_active_user(current_user: User = Depends(get_current_user)):
|
|
if current_user.disabled:
|
|
raise HTTPException(status_code=400, detail="Inactive user")
|
|
return current_user
|
|
|
|
|
|
@app.post("/token")
|
|
async def login(form_data: OAuth2PasswordRequestForm = Depends()):
|
|
user_dict = fake_users_db.get(form_data.username)
|
|
if not user_dict:
|
|
raise HTTPException(status_code=400, detail="Incorrect username or password")
|
|
user = UserInDB(**user_dict)
|
|
hashed_password = fake_hash_password(form_data.password)
|
|
if not hashed_password == user.hashed_password:
|
|
raise HTTPException(status_code=400, detail="Incorrect username or password")
|
|
|
|
return {"access_token": user.username, "token_type": "bearer"}
|
|
|
|
|
|
@app.get("/users/me")
|
|
async def read_users_me(current_user: User = Depends(get_current_active_user)):
|
|
return current_user
|