PyPI - fastapi-fullstack - Versions diffs - 0.1.7__py3-none-any.whl - Mend

fastapi-fullstack 0.1.7__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (241) hide show

fastapi_gen/template/{{cookiecutter.project_slug}}/backend/app/api/routes/v1/sessions.py ADDED Viewed

@@ -0,0 +1,168 @@
+{%- if cookiecutter.enable_session_management and cookiecutter.use_jwt %}
+"""Session management routes."""
+from fastapi import APIRouter, status
+{%- if cookiecutter.use_postgresql %}
+from uuid import UUID
+{%- endif %}
+from app.api.deps import CurrentUser, SessionSvc
+from app.schemas.session import LogoutAllResponse, SessionListResponse, SessionRead
+router = APIRouter()
+{%- if cookiecutter.use_postgresql %}
+@router.get("", response_model=SessionListResponse)
+async def list_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Get all active sessions for the current user."""
+    sessions = await session_service.get_user_sessions(current_user.id)
+    return SessionListResponse(
+        sessions=[
+            SessionRead(
+                id=s.id,
+                device_name=s.device_name,
+                device_type=s.device_type,
+                ip_address=s.ip_address,
+                is_current=False,  # TODO: compare with current session
+                created_at=s.created_at,
+                last_used_at=s.last_used_at,
+            )
+            for s in sessions
+        ],
+        total=len(sessions),
+    )
+@router.delete("/{session_id}", status_code=status.HTTP_204_NO_CONTENT)
+async def logout_session(
+    session_id: UUID,
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout a specific session."""
+    await session_service.logout_session(session_id, current_user.id)
+@router.delete("", response_model=LogoutAllResponse)
+async def logout_all_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout from all sessions (logout from all devices)."""
+    count = await session_service.logout_all_sessions(current_user.id)
+    return LogoutAllResponse(
+        message="Successfully logged out from all sessions",
+        sessions_logged_out=count,
+    )
+{%- elif cookiecutter.use_mongodb %}
+@router.get("", response_model=SessionListResponse)
+async def list_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Get all active sessions for the current user."""
+    sessions = await session_service.get_user_sessions(str(current_user.id))
+    return SessionListResponse(
+        sessions=[
+            SessionRead(
+                id=str(s.id),
+                device_name=s.device_name,
+                device_type=s.device_type,
+                ip_address=s.ip_address,
+                is_current=False,
+                created_at=s.created_at,
+                last_used_at=s.last_used_at,
+            )
+            for s in sessions
+        ],
+        total=len(sessions),
+    )
+@router.delete("/{session_id}", status_code=status.HTTP_204_NO_CONTENT)
+async def logout_session(
+    session_id: str,
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout a specific session."""
+    await session_service.logout_session(session_id, str(current_user.id))
+@router.delete("", response_model=LogoutAllResponse)
+async def logout_all_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout from all sessions (logout from all devices)."""
+    count = await session_service.logout_all_sessions(str(current_user.id))
+    return LogoutAllResponse(
+        message="Successfully logged out from all sessions",
+        sessions_logged_out=count,
+    )
+{%- elif cookiecutter.use_sqlite %}
+@router.get("", response_model=SessionListResponse)
+def list_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Get all active sessions for the current user."""
+    sessions = session_service.get_user_sessions(current_user.id)
+    return SessionListResponse(
+        sessions=[
+            SessionRead(
+                id=s.id,
+                device_name=s.device_name,
+                device_type=s.device_type,
+                ip_address=s.ip_address,
+                is_current=False,
+                created_at=s.created_at,
+                last_used_at=s.last_used_at,
+            )
+            for s in sessions
+        ],
+        total=len(sessions),
+    )
+@router.delete("/{session_id}", status_code=status.HTTP_204_NO_CONTENT)
+def logout_session(
+    session_id: str,
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout a specific session."""
+    session_service.logout_session(session_id, current_user.id)
+@router.delete("", response_model=LogoutAllResponse)
+def logout_all_sessions(
+    current_user: CurrentUser,
+    session_service: SessionSvc,
+):
+    """Logout from all sessions (logout from all devices)."""
+    count = session_service.logout_all_sessions(current_user.id)
+    return LogoutAllResponse(
+        message="Successfully logged out from all sessions",
+        sessions_logged_out=count,
+    )
+{%- endif %}
+{%- else %}
+"""Session routes - not configured."""
+{%- endif %}

fastapi_gen/template/{{cookiecutter.project_slug}}/backend/app/api/routes/v1/users.py ADDED Viewed

@@ -0,0 +1,333 @@
+{%- if cookiecutter.use_jwt %}
+# ruff: noqa: I001 - Imports structured for Jinja2 template conditionals
+"""User management routes."""
+from typing import Annotated
+{%- if cookiecutter.use_postgresql %}
+from uuid import UUID
+{%- endif %}
+from fastapi import APIRouter, Depends, status
+{%- if cookiecutter.enable_pagination %}
+from fastapi_pagination import Page
+from fastapi_pagination.ext.sqlalchemy import paginate
+from sqlalchemy import select
+{%- endif %}
+from app.api.deps import (
+    DBSession,
+    RoleChecker,
+    UserSvc,
+    get_current_user,
+)
+from app.db.models.user import User, UserRole
+from app.schemas.user import UserRead, UserUpdate
+router = APIRouter()
+{%- if cookiecutter.use_postgresql %}
+@router.get("/me", response_model=UserRead)
+async def read_current_user(
+    current_user: Annotated[User, Depends(get_current_user)],
+):
+    """Get current user.
+    Returns the authenticated user's profile including their role.
+    """
+    return current_user
+@router.patch("/me", response_model=UserRead)
+async def update_current_user(
+    user_in: UserUpdate,
+    current_user: Annotated[User, Depends(get_current_user)],
+    user_service: UserSvc,
+):
+    """Update current user.
+    Users can update their own profile (email, full_name).
+    Role changes require admin privileges.
+    """
+    # Prevent non-admin users from changing their own role
+    if user_in.role is not None and not current_user.has_role(UserRole.ADMIN):
+        user_in.role = None
+    user = await user_service.update(current_user.id, user_in)
+    return user
+{%- if cookiecutter.enable_pagination %}
+@router.get("", response_model=Page[UserRead])
+async def read_users(
+    db: DBSession,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Get all users (admin only)."""
+    return await paginate(db, select(User))
+{%- else %}
+@router.get("", response_model=list[UserRead])
+async def read_users(
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+    skip: int = 0,
+    limit: int = 100,
+):
+    """Get all users (admin only)."""
+    users = await user_service.get_multi(skip=skip, limit=limit)
+    return users
+{%- endif %}
+@router.get("/{user_id}", response_model=UserRead)
+async def read_user(
+    user_id: UUID,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Get user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    user = await user_service.get_by_id(user_id)
+    return user
+@router.patch("/{user_id}", response_model=UserRead)
+async def update_user_by_id(
+    user_id: UUID,
+    user_in: UserUpdate,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Update user by ID (admin only).
+    Admins can update any user including their role.
+    Raises NotFoundError if user does not exist.
+    """
+    user = await user_service.update(user_id, user_in)
+    return user
+@router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT)
+async def delete_user_by_id(
+    user_id: UUID,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Delete user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    await user_service.delete(user_id)
+{%- elif cookiecutter.use_mongodb %}
+@router.get("/me", response_model=UserRead)
+async def read_current_user(
+    current_user: Annotated[User, Depends(get_current_user)],
+):
+    """Get current user.
+    Returns the authenticated user's profile including their role.
+    """
+    return current_user
+@router.patch("/me", response_model=UserRead)
+async def update_current_user(
+    user_in: UserUpdate,
+    current_user: Annotated[User, Depends(get_current_user)],
+    user_service: UserSvc,
+):
+    """Update current user.
+    Users can update their own profile (email, full_name).
+    Role changes require admin privileges.
+    """
+    # Prevent non-admin users from changing their own role
+    if user_in.role is not None and not current_user.has_role(UserRole.ADMIN):
+        user_in.role = None
+    user = await user_service.update(str(current_user.id), user_in)
+    return user
+@router.get("", response_model=list[UserRead])
+async def read_users(
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+    skip: int = 0,
+    limit: int = 100,
+):
+    """Get all users (admin only)."""
+    users = await user_service.get_multi(skip=skip, limit=limit)
+    return users
+@router.get("/{user_id}", response_model=UserRead)
+async def read_user(
+    user_id: str,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Get user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    user = await user_service.get_by_id(user_id)
+    return user
+@router.patch("/{user_id}", response_model=UserRead)
+async def update_user_by_id(
+    user_id: str,
+    user_in: UserUpdate,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Update user by ID (admin only).
+    Admins can update any user including their role.
+    Raises NotFoundError if user does not exist.
+    """
+    user = await user_service.update(user_id, user_in)
+    return user
+@router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT)
+async def delete_user_by_id(
+    user_id: str,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Delete user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    await user_service.delete(user_id)
+{%- elif cookiecutter.use_sqlite %}
+@router.get("/me", response_model=UserRead)
+def read_current_user(
+    current_user: Annotated[User, Depends(get_current_user)],
+):
+    """Get current user.
+    Returns the authenticated user's profile including their role.
+    """
+    return current_user
+@router.patch("/me", response_model=UserRead)
+def update_current_user(
+    user_in: UserUpdate,
+    current_user: Annotated[User, Depends(get_current_user)],
+    user_service: UserSvc,
+):
+    """Update current user.
+    Users can update their own profile (email, full_name).
+    Role changes require admin privileges.
+    """
+    # Prevent non-admin users from changing their own role
+    if user_in.role is not None and not current_user.has_role(UserRole.ADMIN):
+        user_in.role = None
+    user = user_service.update(current_user.id, user_in)
+    return user
+{%- if cookiecutter.enable_pagination %}
+@router.get("", response_model=Page[UserRead])
+def read_users(
+    db: DBSession,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Get all users (admin only)."""
+    return paginate(db, select(User))
+{%- else %}
+@router.get("", response_model=list[UserRead])
+def read_users(
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+    skip: int = 0,
+    limit: int = 100,
+):
+    """Get all users (admin only)."""
+    users = user_service.get_multi(skip=skip, limit=limit)
+    return users
+{%- endif %}
+@router.get("/{user_id}", response_model=UserRead)
+def read_user(
+    user_id: str,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Get user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    user = user_service.get_by_id(user_id)
+    return user
+@router.patch("/{user_id}", response_model=UserRead)
+def update_user_by_id(
+    user_id: str,
+    user_in: UserUpdate,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Update user by ID (admin only).
+    Admins can update any user including their role.
+    Raises NotFoundError if user does not exist.
+    """
+    user = user_service.update(user_id, user_in)
+    return user
+@router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT)
+def delete_user_by_id(
+    user_id: str,
+    user_service: UserSvc,
+    current_user: Annotated[User, Depends(RoleChecker(UserRole.ADMIN))],
+):
+    """Delete user by ID (admin only).
+    Raises NotFoundError if user does not exist.
+    """
+    user_service.delete(user_id)
+{%- endif %}
+{%- else %}
+"""User routes - not configured."""
+{%- endif %}