fc-django-post-api 2026.6.0__tar.gz

fc_django_post_api-2026.6.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Terry Chan
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

fc_django_post_api-2026.6.0/MANIFEST.in

@@ -0,0 +1,3 @@
+include README.md LICENSE
+include pyproject.toml
+recursive-include src/fc_django_post_api *.py

fc_django_post_api-2026.6.0/PKG-INFO

@@ -0,0 +1,67 @@
+Metadata-Version: 2.4
+Name: fc-django-post-api
+Version: 2026.6.0
+Summary: Django REST API package extracted from fc_django_crazypowertools
+Author: DBox AI
+License-Expression: MIT
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: Django<4.0,>=3.2
+Requires-Dist: djangorestframework<3.15,>=3.13
+Requires-Dist: djangorestframework-simplejwt<6.0,>=4.8
+Requires-Dist: django-filter<23.0,>=21.0
+Requires-Dist: djoser>=2.0
+Requires-Dist: django-solo<2.4,>=2.2
+Requires-Dist: django-hitcount<2.0,>=1.3.5
+Requires-Dist: django-tbase-post-product<2027.0.0,>=2026.3.1617736733
+Dynamic: license-file
+
+# fc-django-post-api
+
+[![PyPI version](https://badge.fury.io/py/fc-django-post-api.svg)](https://pypi.org/project/fc-django-post-api/)
+
+Django REST API package extracted from [fc_django_crazypowertools](https://github.com/napoler/fc_django_crazypowertools).
+
+> **Status:** experimental — first PyPI release (2026.6.0).
+
+## Install
+
+```bash
+pip install fc-django-post-api
+```
+
+## Configure
+
+Add to `INSTALLED_APPS` in your Django settings:
+
+```python
+INSTALLED_APPS = [
+    ...,
+    "fc_django_post_api",
+]
+```
+
+The `AppConfig` declares `label = "api"`, so the Django app label remains `api` even though the Python import is `fc_django_post_api`. Database tables, migrations, and `reverse()` lookups are unaffected.
+
+## Mount URLs
+
+```python
+# urls.py
+urlpatterns = [
+    path("api/", include("fc_django_post_api.urls")),
+    ...,
+]
+```
+
+## Endpoints
+
+- `GET /api/posts/` — PostViewSet (DRF)
+- `GET /api/health/` — HealthView
+- `GET /api/me/` — MeView
+- `POST /api/auth/token/` — JWT obtain
+- `POST /api/auth/token/refresh/` — JWT refresh
+
+## License
+
+MIT — see `LICENSE`.

fc_django_post_api-2026.6.0/README.md

@@ -0,0 +1,48 @@
+# fc-django-post-api
+
+[![PyPI version](https://badge.fury.io/py/fc-django-post-api.svg)](https://pypi.org/project/fc-django-post-api/)
+
+Django REST API package extracted from [fc_django_crazypowertools](https://github.com/napoler/fc_django_crazypowertools).
+
+> **Status:** experimental — first PyPI release (2026.6.0).
+
+## Install
+
+```bash
+pip install fc-django-post-api
+```
+
+## Configure
+
+Add to `INSTALLED_APPS` in your Django settings:
+
+```python
+INSTALLED_APPS = [
+    ...,
+    "fc_django_post_api",
+]
+```
+
+The `AppConfig` declares `label = "api"`, so the Django app label remains `api` even though the Python import is `fc_django_post_api`. Database tables, migrations, and `reverse()` lookups are unaffected.
+
+## Mount URLs
+
+```python
+# urls.py
+urlpatterns = [
+    path("api/", include("fc_django_post_api.urls")),
+    ...,
+]
+```
+
+## Endpoints
+
+- `GET /api/posts/` — PostViewSet (DRF)
+- `GET /api/health/` — HealthView
+- `GET /api/me/` — MeView
+- `POST /api/auth/token/` — JWT obtain
+- `POST /api/auth/token/refresh/` — JWT refresh
+
+## License
+
+MIT — see `LICENSE`.

fc_django_post_api-2026.6.0/pyproject.toml

@@ -0,0 +1,27 @@
+[build-system]
+requires = ["setuptools>=68", "wheel"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "fc-django-post-api"
+version = "2026.6.0"
+description = "Django REST API package extracted from fc_django_crazypowertools"
+readme = "README.md"
+license = "MIT"
+requires-python = ">=3.10"
+authors = [
+  {name = "DBox AI"}
+]
+dependencies = [
+    "Django>=3.2,<4.0",
+    "djangorestframework>=3.13,<3.15",
+    "djangorestframework-simplejwt>=4.8,<6.0",
+    "django-filter>=21.0,<23.0",
+    "djoser>=2.0",
+    "django-solo>=2.2,<2.4",   # 兼容 Django 3.2 (2.4+ 要求 Django>=4.2；2.0/2.1 有 model signal bug)
+    "django-hitcount>=1.3.5,<2.0",  # 兼容 Django 3.2 (1.3.0-1.3.4 有 import path bug)
+    "django-tbase-post-product>=2026.3.1617736733,<2027.0.0",
+]
+
+[tool.setuptools.packages.find]
+where = ["src"]

fc_django_post_api-2026.6.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

fc_django_post_api-2026.6.0/src/fc_django_post_api/__init__.py

@@ -0,0 +1,9 @@
+try:
+    from importlib.metadata import version, PackageNotFoundError
+except ImportError:  # pragma: no cover
+    from importlib_metadata import version, PackageNotFoundError  # type: ignore
+
+try:
+    __version__ = version("fc-django-post-api")
+except PackageNotFoundError:  # 源码 checkout 场景
+    __version__ = "2026.6.0"

fc_django_post_api-2026.6.0/src/fc_django_post_api/admin.py

@@ -0,0 +1,64 @@
+from django.contrib import admin
+from django.utils.html import format_html
+from datetime import datetime
+from rest_framework_simplejwt.token_blacklist.models import OutstandingToken, BlacklistedToken
+
+# Unregister the default admin classes first
+admin.site.unregister(OutstandingToken)
+admin.site.unregister(BlacklistedToken)
+
+
+@admin.register(OutstandingToken)
+class OutstandingTokenAdmin(admin.ModelAdmin):
+    """Admin interface for viewing and managing JWT tokens."""
+
+    list_display = [
+        "id",
+        "user",
+        "created_at",
+        "expires_at",
+        "is_expired",
+        "is_blacklisted",
+    ]
+    list_filter = ["created_at", "expires_at"]
+    search_fields = ["user__username", "token_id"]
+    readonly_fields = [
+        "id",
+        "user",
+        "jti",
+        "token",
+        "created_at",
+        "expires_at",
+    ]
+    actions = ["revoke_tokens"]
+
+    def is_expired(self, obj):
+        """Check if token is expired."""
+        return obj.expires_at < datetime.now(obj.expires_at.tzinfo)
+
+    is_expired.boolean = True
+
+    def is_blacklisted(self, obj):
+        """Check if token is blacklisted."""
+        return BlacklistedToken.objects.filter(token=obj).exists()
+
+    is_blacklisted.boolean = True
+
+    @admin.action(description="Revoke selected tokens")
+    def revoke_tokens(self, request, queryset):
+        """Revoke selected OutstandingTokens by blacklisting them."""
+        for token in queryset:
+            BlacklistedToken.objects.get_or_create(token=token)
+        self.message_user(request, f"{queryset.count()} token(s) revoked.")
+
+    revoke_tokens.allowed_permissions = ("delete",)
+
+
+@admin.register(BlacklistedToken)
+class BlacklistedTokenAdmin(admin.ModelAdmin):
+    """Admin interface for viewing blacklisted tokens."""
+
+    list_display = ["id", "token", "blacklisted_at"]
+    list_filter = ["blacklisted_at"]
+    search_fields = ["token__user__username"]
+    readonly_fields = ["token", "blacklisted_at"]

fc_django_post_api-2026.6.0/src/fc_django_post_api/admin_site.py

@@ -0,0 +1,192 @@
+"""
+Custom admin views for API Help and Token Generation.
+Uses monkey-patching to extend the default admin.site without replacing it.
+This preserves all existing model registrations from tbase_admin.
+"""
+
+from django.contrib import admin
+from django.shortcuts import render
+from django.http import HttpRequest, HttpResponse
+from django.contrib import messages
+from django.urls import path, reverse
+from django.conf import settings
+
+from rest_framework_simplejwt.tokens import RefreshToken
+from rest_framework_simplejwt.token_blacklist.models import BlacklistedToken
+
+
+def get_jwt_settings():
+    """Get JWT token lifetime settings."""
+    jwt_settings = getattr(settings, "SIMPLE_JWT", {})
+    access_lifetime = jwt_settings.get("ACCESS_TOKEN_LIFETIME")
+    refresh_lifetime = jwt_settings.get("REFRESH_TOKEN_LIFETIME")
+    return {
+        "access_lifetime": access_lifetime,
+        "refresh_lifetime": refresh_lifetime,
+    }
+
+
+def api_help_view(request: HttpRequest) -> HttpResponse:
+    """
+    Display API documentation page in admin.
+    """
+    from rest_framework_simplejwt.token_blacklist.models import OutstandingToken
+    from django.utils import timezone
+
+    base_url = request.build_absolute_uri("/api/")
+
+    # Get current user's tokens
+    user_tokens = OutstandingToken.objects.filter(user=request.user)
+    active_tokens = []
+    for token in user_tokens:
+        is_expired = token.expires_at < timezone.now()
+        is_blacklisted = BlacklistedToken.objects.filter(token=token).exists()
+        active_tokens.append(
+            {
+                "id": token.id,
+                "created_at": token.created_at,
+                "expires_at": token.expires_at,
+                "is_expired": is_expired,
+                "is_blacklisted": is_blacklisted,
+            }
+        )
+
+    context = {
+        "title": "API Token Management",
+        "base_url": base_url,
+        "active_tokens": active_tokens,
+        **admin.site.each_context(request),
+    }
+    return render(request, "admin/api_help.html", context)
+
+
+def api_token_view(request: HttpRequest) -> HttpResponse:
+    """
+    Generate JWT token for the logged-in user and list existing tokens.
+    """
+    from rest_framework_simplejwt.token_blacklist.models import OutstandingToken
+    from django.utils import timezone
+
+    jwt_settings = get_jwt_settings()
+
+    # Get current user's existing tokens
+    user_tokens = OutstandingToken.objects.filter(user=request.user).order_by("-created_at")
+    active_tokens = []
+    for token in user_tokens:
+        is_expired = token.expires_at < timezone.now()
+        is_blacklisted = BlacklistedToken.objects.filter(token=token).exists()
+        active_tokens.append(
+            {
+                "id": token.id,
+                "created_at": token.created_at,
+                "expires_at": token.expires_at,
+                "is_expired": is_expired,
+                "is_blacklisted": is_blacklisted,
+            }
+        )
+
+    context = {
+        "title": "获取访问令牌",
+        "user": request.user,
+        "access_token": None,
+        "refresh_token": None,
+        "access_lifetime": jwt_settings["access_lifetime"],
+        "refresh_lifetime": jwt_settings["refresh_lifetime"],
+        "active_tokens": active_tokens,
+        **admin.site.each_context(request),
+    }
+
+    if request.method == "POST":
+        try:
+            # Generate tokens for the current user
+            refresh = RefreshToken.for_user(request.user)
+            context["access_token"] = str(refresh.access_token)
+            context["refresh_token"] = str(refresh)
+            messages.success(request, "✅ 访问令牌已成功生成！")
+        except Exception as e:
+            messages.error(request, f"❌ 生成令牌失败: {str(e)}")
+
+    return render(request, "admin/api_token.html", context)
+
+
+def revoke_token_view(request: HttpRequest, token_id: int) -> HttpResponse:
+    from rest_framework_simplejwt.token_blacklist.models import OutstandingToken
+    from django.shortcuts import get_object_or_404, redirect
+
+    token = get_object_or_404(OutstandingToken, id=token_id)
+
+    # Users can only revoke their own tokens, admins can revoke any
+    if request.user != token.user and not request.user.is_superuser:
+        messages.error(request, "You can only revoke your own tokens!")
+        return redirect("admin:api_help")
+
+    BlacklistedToken.objects.get_or_create(token=token)
+    messages.success(request, f"Token #{token_id} has been revoked successfully!")
+    return redirect("admin:api_help")
+
+
+# Monkey-patch admin.site.get_urls() to add custom URLs
+_original_get_urls = admin.site.get_urls
+
+
+def custom_get_urls():
+    """Extend admin.site.get_urls() with custom API URLs."""
+    urls = _original_get_urls()
+    custom_urls = [
+        path("api-help/", admin.site.admin_view(api_help_view), name="api_help"),
+        path("api-token/", admin.site.admin_view(api_token_view), name="api_token"),
+        path(
+            "api-token/<int:token_id>/revoke/",
+            admin.site.admin_view(revoke_token_view),
+            name="api_token_revoke",
+        ),
+    ]
+    return custom_urls + urls
+
+
+# Apply the monkey-patch
+admin.site.get_urls = custom_get_urls
+
+
+# Monkey-patch admin.site.get_app_list() to add API menu to left navigation
+# Django 3.2 AdminSite.get_app_list(self, request)
+_original_get_app_list = admin.site.get_app_list.__func__
+
+
+def custom_get_app_list(self, request):
+    """Extend admin.site.get_app_list() to add API menu."""
+    app_list = _original_get_app_list(self, request)
+
+    # Add API application to navigation
+    api_app = {
+        "name": "API",
+        "app_label": "api",
+        "app_url": reverse("admin:api_help"),
+        "has_module_perms": True,
+        "models": [
+            {
+                "name": "API 使用帮助",
+                "object_name": "api_help",
+                "admin_url": reverse("admin:api_help"),
+                "view_only": True,
+            },
+            {
+                "name": "获取访问令牌",
+                "object_name": "api_token",
+                "admin_url": reverse("admin:api_token"),
+                "view_only": True,
+            },
+        ],
+    }
+
+    # Insert after "性能管理" (index 0) or at the end
+    if app_list and app_list[0].get("app_label") == "performance":
+        app_list.insert(1, api_app)
+    else:
+        app_list.insert(0, api_app)
+
+    return app_list
+
+
+# Apply the monkey-patch (bind to admin.site instance)
+admin.site.get_app_list = custom_get_app_list.__get__(admin.site, type(admin.site))

fc_django_post_api-2026.6.0/src/fc_django_post_api/apps.py

@@ -0,0 +1,17 @@
+from django.apps import AppConfig
+
+
+class FcDjangoPostApiConfig(AppConfig):
+    default_auto_field = "django.db.models.BigAutoField"
+    name = "fc_django_post_api"
+    label = "api"
+    verbose_name = "API"
+
+    def ready(self):
+        """
+        Apply monkey-patch to admin.site when app is ready.
+        This adds custom API help and token generation views to Django admin.
+        """
+        # Import applies the monkey-patch to admin.site
+        from fc_django_post_api import admin_site  # noqa: F401
+        from . import admin as api_admin  # noqa: F401

fc_django_post_api-2026.6.0/src/fc_django_post_api/models.py

@@ -0,0 +1,2 @@
+# API models - using tbase_post models from external package
+from django.db import models

fc_django_post_api-2026.6.0/src/fc_django_post_api/permissions.py

@@ -0,0 +1,24 @@
+"""
+Custom permissions for API endpoints.
+"""
+
+from rest_framework import permissions
+
+
+class IsAuthorOrReadOnly(permissions.BasePermission):
+    """
+    Custom permission to only allow authors of an object to edit it.
+    Assumes the model instance has an 'author' attribute.
+    """
+
+    def has_object_permission(self, request, view, obj):
+        # Read permissions are allowed for any request,
+        # so we'll always allow GET, HEAD or OPTIONS requests.
+        if request.method in permissions.SAFE_METHODS:
+            return True
+
+        # Write permissions only for the author
+        # If obj.author is None, deny write access
+        if obj.author is None:
+            return False
+        return obj.author == request.user

fc_django_post_api-2026.6.0/src/fc_django_post_api/serializers.py

@@ -0,0 +1,127 @@
+"""
+API Serializers for Post CRUD operations.
+Uses tbase_post.models.Post from external package.
+"""
+
+from rest_framework import serializers
+
+
+class PostSerializer(serializers.ModelSerializer):
+    """
+    Serializer for tbase_post Post model.
+    Uses ModelSerializer for automatic field mapping.
+    """
+
+    tag_names = serializers.ListField(
+        child=serializers.CharField(max_length=255),
+        required=False,
+        allow_empty=True,
+        help_text="List of tag names to set on the post",
+    )
+    author = serializers.PrimaryKeyRelatedField(read_only=True)
+    author_name = serializers.SerializerMethodField()
+
+    class Meta:
+        model = None  # Set dynamically in __init__
+        fields = [
+            "id",
+            "title",
+            "content",
+            "publish_status",
+            "created_on",
+            "updated_on",
+            "tag_names",
+            "meta_description",
+            "meta_keywords",
+            "article_img",
+            "product_name",
+            "product_id",
+            "youtube_id",
+            "data",
+            "author",
+            "author_name",
+        ]
+        read_only_fields = [
+            "id",
+            "created_on",
+            "updated_on",
+            "author",
+        ]
+
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+        # Import Post model dynamically to avoid import errors
+        from tbase_post.models import Post
+
+        self.Meta.model = Post
+
+    def to_representation(self, instance):
+        """Include tag_names in output."""
+        data = super().to_representation(instance)
+        try:
+            data["tag_names"] = list(instance.tags.values_list("name", flat=True))
+        except Exception:
+            data["tag_names"] = []
+        return data
+
+    def create(self, validated_data):
+        """Create post and set tags."""
+        tag_names = validated_data.pop("tag_names", [])
+        instance = super().create(validated_data)
+        self._set_tags(instance, tag_names)
+        return instance
+
+    def update(self, instance, validated_data):
+        """Update post and set tags."""
+        tag_names = validated_data.pop("tag_names", None)
+        instance = super().update(instance, validated_data)
+        if tag_names is not None:
+            self._set_tags(instance, tag_names)
+        return instance
+
+    def _set_tags(self, instance, tag_names):
+        """Set tags on instance using django-taggit."""
+        # Clear existing tags and add new ones
+        instance.tags.clear()
+        for tag_name in tag_names:
+            instance.tags.add(tag_name)
+
+    def get_author_name(self, obj):
+        """Get author username."""
+        try:
+            return obj.author.username if obj.author else None
+        except Exception:
+            return None
+
+
+class PostListSerializer(serializers.ModelSerializer):
+    """
+    Simplified serializer for post listing.
+    """
+
+    tag_names = serializers.SerializerMethodField(read_only=True)
+
+    class Meta:
+        model = None  # Set dynamically in __init__
+        fields = [
+            "id",
+            "title",
+            "publish_status",
+            "created_on",
+            "updated_on",
+            "article_img",
+            "tag_names",
+        ]
+
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+        from tbase_post.models import Post
+
+        self.Meta.model = Post
+
+    def get_tag_names(self, obj):
+        """Get tag names from taggit."""
+        try:
+            return list(obj.tags.values_list("name", flat=True))
+        except Exception:
+            return []