PyPI - fastapi-rtk - Versions diffs - 1.0.7__tar.gz → 1.0.9__tar.gz - Mend

fastapi-rtk 1.0.7tar.gz → 1.0.9tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (135) hide show

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: fastapi-rtk
-Version: 1.0.7
+Version: 1.0.9
 Summary: A package that provides a set of tools to build a FastAPI application with a Class-Based CRUD API.
 Project-URL: Homepage, https://codeberg.org/datatactics/fastapi-rtk
 Project-URL: Issues, https://codeberg.org/datatactics/fastapi-rtk/issues

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/__init__.py RENAMED Viewed

@@ -156,7 +156,6 @@ __all__ = [
     "docs",
     # .dependencies
     "set_global_user",
-    "permissions",
     "current_permissions",
     "has_access_dependency",
     # .exceptions

fastapi_rtk-1.0.9/fastapi_rtk/_version.py ADDED Viewed

	@@ -0,0 +1 @@
1	+ __version__ = "1.0.9"

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/api/model_rest_api.py RENAMED Viewed

@@ -2328,6 +2328,7 @@ class ModelRestApi(BaseApi):
                     )
                     if self.datamodel.is_files(key) or self.datamodel.is_images(key):
+                        value = [x for x in value if x]  # Remove None values
                         old_filenames = (
                             [x for x in value if isinstance(x, str)] if value else []
                         )

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/auth/auth.py RENAMED Viewed

@@ -142,15 +142,6 @@ class Authenticator(BaseAuthenticator):
         except HTTPException as e:
             if not default_to_none:
                 raise e
-        # Retrieve list of apis, that user has access to
-        if user:
-            user.permissions = []
-            for role in user.roles:
-                for permission_api in role.permissions:
-                    user.permissions.append(permission_api.api.name)
-            user.permissions = list(set(user.permissions))
         return user, token

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/backends/sqla/db.py RENAMED Viewed

@@ -454,3 +454,11 @@ class SQLAQueryBuilder(AbstractQueryBuilder[Select[tuple[T]]]):
             load_column["related_columns"][col]["type"] = "some"
         return load_column
+    def _convert_id_into_dict(self, id):
+        # Cast the id into the right type based on the pk column type
+        pk_dict = super()._convert_id_into_dict(id)
+        for pk in pk_dict:
+            col_type = self.datamodel.list_columns[pk].type.python_type
+            pk_dict[pk] = col_type(pk_dict[pk])
+        return pk_dict

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/backends/sqla/filters.py RENAMED Viewed

@@ -617,6 +617,22 @@ class SQLAFilterConverter:
                 FilterIn,
             ],
         ),
+        (
+            "is_files",
+            [
+                FilterTextContains,
+                # TODO: Make compatible filters
+                # FilterEqual,
+                # FilterNotEqual,
+                # FilterStartsWith,
+                # FilterNotStartsWith,
+                # FilterEndsWith,
+                # FilterNotEndsWith,
+                # FilterContains,
+                # FilterNotContains,
+                # FilterIn,
+            ],
+        ),
         (
             "is_integer",
             [

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/backends/sqla/interface.py RENAMED Viewed

@@ -255,7 +255,12 @@ class SQLAInterface(AbstractInterface[ModelType, Session | AsyncSession, Column]
                     unique_order_columns.update(
                         [f"{col_name}.{sub_col}" for sub_col in sub_order_columns]
                     )
-            elif self.is_property(col_name) and not self.is_hybrid_property(col_name):
+            elif (
+                self.is_property(col_name)
+                and not self.is_hybrid_property(col_name)
+                or self.is_files(col_name)
+                or self.is_images(col_name)
+            ):
                 continue
             # Allow the column to be used for ordering by default
@@ -353,14 +358,12 @@ class SQLAInterface(AbstractInterface[ModelType, Session | AsyncSession, Column]
             ]
         elif self.is_file(col) or self.is_image(col):
             value_type = fastapi.UploadFile
+            annotated_str_type = typing.Annotated[
+                str | None, BeforeValidator(lambda x: None if x == "null" else x)
+            ]
             if self.is_files(col) or self.is_images(col):
-                value_type = list[value_type | str]
-            return (
-                value_type
-                | typing.Annotated[
-                    str | None, BeforeValidator(lambda x: None if x == "null" else x)
-                ]
-            )
+                value_type = list[value_type | annotated_str_type]
+            return value_type | annotated_str_type
         elif self.is_date(col):
             return date
         elif self.is_datetime(col):

{fastapi_rtk-1.0.7 → fastapi_rtk-1.0.9}/fastapi_rtk/bases/file_manager.py RENAMED Viewed

@@ -35,6 +35,18 @@ class AbstractFileManager(abc.ABC):
         namegen: typing.Callable[[str], str] | None = None,
         permission: int | None = None,
     ):
+        """
+        Initializes the AbstractFileManager.
+        Args:
+            base_path (str | None, optional): Base path for file storage. Defaults to None.
+            allowed_extensions (list[str] | None, optional): Allowed file extensions. Defaults to None.
+            namegen (typing.Callable[[str], str] | None, optional): Callable for generating file names. Defaults to None.
+            permission (int | None, optional): File permission settings. Defaults to None.
+        Raises:
+            ValueError: If `base_path` is not set.
+        """
         if base_path is not None:
             self.base_path = base_path
         if allowed_extensions is not None:

fastapi_rtk-1.0.9/fastapi_rtk/dependencies.py ADDED Viewed

@@ -0,0 +1,256 @@
+import fastapi
+import sqlalchemy
+from fastapi import Depends, HTTPException
+from .api.base_api import BaseApi
+from .const import PERMISSION_PREFIX, ErrorCode, logger
+from .db import db
+from .globals import g
+from .security.sqla.models import Api, Permission, PermissionApi, Role, User
+from .utils import smart_run
+__all__ = [
+    "set_global_user",
+    "current_permissions",
+    "has_access_dependency",
+]
+def set_global_user():
+    """
+    A dependency for FastAPI that will set the current user to the global variable `g.user`.
+    Usage:
+    ```python
+    async def get_info(
+            *,
+            session: AsyncSession | Session = Depends(get_async_session),
+            none: None = Depends(set_global_user()),
+        ):
+    ...more code
+    """
+    async def set_global_user_dependency(
+        user: User | None = Depends(
+            g.auth.fastapi_users.current_user(active=True, default_to_none=True)
+        ),
+    ):
+        g.user = user
+    return set_global_user_dependency
+def check_g_user():
+    """
+    A dependency for FastAPI that will check if the current user is set to the global variable `g.user`.
+    Usage:
+    ```python
+    async def get_info(
+            *,
+            session: AsyncSession | Session = Depends(get_async_session),
+            none: None = Depends(check_g_user()),
+        ):
+    ...more code
+    """
+    async def check_g_user_dependency():
+        if not g.user:
+            raise HTTPException(
+                fastapi.status.HTTP_401_UNAUTHORIZED,
+                ErrorCode.GET_USER_MISSING_TOKEN_OR_INACTIVE_USER,
+            )
+    return check_g_user_dependency
+def current_permissions(api: BaseApi):
+    """
+    A dependency for FastAPI that will return all permissions of the current user for the specified API.
+    Because it will implicitly check whether the user is authenticated, it can return `401 Unauthorized` or `403 Forbidden`.
+    Args:
+        api (BaseApi): The API to be checked.
+    Usage:
+    ```python
+    async def get_info(
+            *,
+            permissions: List[str] = Depends(current_permissions(self)),
+            session: AsyncSession | Session = Depends(get_async_session),
+        ):
+    ...more code
+    ```
+    """
+    async def current_permissions_depedency(_=Depends(_ensure_roles)):
+        sm = g.current_app.security
+        api_name = api.__class__.__name__
+        permissions = set[str]()
+        db_role_ids = list[int]()
+        # Retrieve permissions from built-in roles
+        for role in g.user.roles:
+            if role.name not in sm.builtin_roles:
+                db_role_ids.append(role.id)
+                continue
+            api_permission_tuples = sm.get_api_permission_tuples_from_builtin_roles(
+                role.name
+            )
+            for multi_apis_str, multi_perms_str in api_permission_tuples:
+                api_names = multi_apis_str.split("|")
+                perm_names = multi_perms_str.split("|")
+                if api_name in api_names:
+                    permissions.update(perm_names)
+        if db_role_ids:
+            query = (
+                sqlalchemy.select(Permission)
+                .join(PermissionApi)
+                .join(PermissionApi.roles)
+                .join(Api)
+                .where(Api.name == api_name, Role.id.in_(db_role_ids))
+            )
+            if api.base_permissions:
+                query = query.where(Permission.name.in_(api.base_permissions))
+            permissions_in_db = await smart_run(db.current_session.scalars, query)
+            permissions.update(perm.name for perm in permissions_in_db.all())
+        if api.base_permissions:
+            permissions = permissions.intersection(set(api.base_permissions))
+        return list(permissions)
+    return current_permissions_depedency
+def has_access_dependency(
+    api: BaseApi,
+    permission: str,
+):
+    """
+    A dependency for FastAPI to check whether current user has access to the specified API and permission.
+    Because it will implicitly check whether the user is authenticated, it can return `401 Unauthorized` or `403 Forbidden`.
+    Usage:
+    ```python
+    @self.router.get(
+            "/_info",
+            response_model=self.info_return_schema,
+            dependencies=[Depends(has_access(self, "info"))],
+        )
+    ...more code
+    ```
+    Args:
+        api (BaseApi): The API to be checked.
+        permission (str): The permission to check.
+    """
+    permission = f"{PERMISSION_PREFIX}{permission}"
+    async def check_permission():
+        _ensure_roles(ErrorCode.PERMISSION_DENIED)
+        # First, check built-in roles (avoiding unnecessary DB queries)
+        # This also covers the case for API and permission name with pipes
+        sm = g.current_app.security
+        if any(
+            sm.has_access_in_builtin_roles(
+                role.name, api.__class__.__name__, permission
+            )
+            for role in g.user.roles
+        ):
+            logger.debug(
+                f"User {g.user} has access to {api.__class__.__name__} with permission {permission} via built-in roles."
+            )
+            return
+        db_role_ids = [
+            role.id for role in g.user.roles if role.name not in sm.builtin_roles
+        ]
+        if not db_role_ids:
+            raise HTTPException(
+                fastapi.status.HTTP_403_FORBIDDEN, ErrorCode.PERMISSION_DENIED
+            )
+        api_name = api.__class__.__name__
+        exist_query = (
+            sqlalchemy.select(Permission)
+            .join(PermissionApi)
+            .join(PermissionApi.roles)
+            .join(Api)
+            .where(
+                Api.name == api_name,
+                Permission.name == permission,
+                Role.id.in_(db_role_ids),
+            )
+            .exists()
+        )
+        result: bool = await smart_run(
+            db.current_session.scalar, sqlalchemy.select(exist_query)
+        )
+        if result:
+            return
+        raise HTTPException(
+            fastapi.status.HTTP_403_FORBIDDEN, ErrorCode.PERMISSION_DENIED
+        )
+    return check_permission
+async def set_global_background_tasks(background_tasks: fastapi.BackgroundTasks):
+    """
+    A dependency for FastAPI that will set the `background_tasks` to the global variable `g.background_tasks`.
+    Usage:
+    ```python
+    async def get_info(
+            *,
+            session: AsyncSession | Session = Depends(get_async_session),
+            none: None = Depends(set_global_background_tasks),
+        ):
+    ...more code
+    """
+    g.background_tasks = background_tasks
+async def set_global_request(request: fastapi.Request):
+    """
+    A dependency for FastAPI that will set the `request` to the global variable `g.request`.
+    Usage:
+    ```python
+    async def get_info(
+            *,
+            session: AsyncSession | Session = Depends(get_async_session),
+            none: None = Depends(set_global_request),
+        ):
+    ...more code
+    """
+    g.request = request
+def _ensure_roles(err_forbidden_message=ErrorCode.GET_USER_NO_ROLES):
+    """
+    A dependency for FastAPI that will ensure the current user has roles assigned.
+    Args:
+        err_forbidden_message (str): The error message to be used when raising `403 Forbidden`. Defaults to `ErrorCode.GET_USER_NO_ROLES`.
+    Raises:
+        HTTPException: Raised when the user is not authenticated.
+        HTTPException: Raised when the user has no roles assigned.
+    """
+    if not g.user:
+        raise HTTPException(
+            fastapi.status.HTTP_401_UNAUTHORIZED,
+            ErrorCode.GET_USER_MISSING_TOKEN_OR_INACTIVE_USER,
+        )
+    if not g.user.roles:
+        raise HTTPException(fastapi.status.HTTP_403_FORBIDDEN, err_forbidden_message)

fastapi-rtk 1.0.7__tar.gz → 1.0.9__tar.gz

fastapi-rtk 1.0.7tar.gz → 1.0.9tar.gz