ohmyapi 0.1.7__py3-none-any.whl → 0.1.9__py3-none-any.whl

ohmyapi/builtin/auth/models.py

@@ -7,12 +7,12 @@ pwd_context = CryptContext(schemes=["argon2"], deprecated="auto")
 
 
 class Group(Model):
-    id = field.IntField(pk=True)
+    id = field.data.UUIDField(pk=True)
     name = field.CharField(max_length=42, index=True)
 
 
 class User(Model):
-    id = field.IntField(pk=True)
+    id = field.data.UUIDField(pk=True)
     email = field.CharField(max_length=255, unique=True, index=True)
     username = field.CharField(max_length=150, unique=True)
     password_hash = field.CharField(max_length=128)

ohmyapi/builtin/auth/permissions.py

@@ -1,4 +1,5 @@
 from .routes import (
+    get_token,
     get_current_user,
     require_authenticated,
     require_admin,

ohmyapi/builtin/auth/routes.py

@@ -1,12 +1,13 @@
 import time
-from typing import Dict
+from enum import Enum
+from typing import Any, Dict, List
 
 import jwt
 from fastapi import APIRouter, Body, Depends, Header, HTTPException, status
 from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
 from pydantic import BaseModel
 
-from ohmyapi.builtin.auth.models import User
+from ohmyapi.builtin.auth.models import User, Group
 
 import settings
 
@@ -40,14 +41,39 @@ def decode_token(token: str) -> Dict:
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token")
 
 
+class TokenType(str, Enum):
+    """
+    Helper for indicating the token type when generating claims.
+    """
+    access = "access"
+    refresh = "refresh"
+
+
+def claims(token_type: TokenType, user: User, groups: List[Group] = []) -> Dict[str, Any]:
+    return {
+        'type': token_type,
+        'sub': str(user.id),
+        'user': {
+            'username': user.username,
+            'email': user.email,
+        },
+        'roles': [g.name for g in groups]
+    }
+
+async def get_token(token: str = Depends(oauth2_scheme)) -> Dict:
+    """Dependency: token introspection"""
+    payload = decode_token(token)
+    return payload
+
+
 async def get_current_user(token: str = Depends(oauth2_scheme)) -> User:
     """Dependency: extract user from access token."""
     payload = decode_token(token)
-    username = payload.get("sub")
-    if username is None:
+    user_id = payload.get("sub")
+    if user_id is None:
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token payload")
 
-    user = await User.filter(username=username).first()
+    user = await User.filter(id=user_id).first()
     if not user:
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="User not found")
     return user
@@ -100,8 +126,8 @@ async def login(form_data: LoginRequest = Body(...)):
     if not user:
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid credentials")
 
-    access_token = create_token({"sub": user.username, "type": "access"}, ACCESS_TOKEN_EXPIRE_SECONDS)
-    refresh_token = create_token({"sub": user.username, "type": "refresh"}, REFRESH_TOKEN_EXPIRE_SECONDS)
+    access_token = create_token(claims(TokenType.access, user), ACCESS_TOKEN_EXPIRE_SECONDS)
+    refresh_token = create_token(claims(TokenType.refresh, user), REFRESH_TOKEN_EXPIRE_SECONDS)
 
     return {
         "access_token": access_token,
@@ -117,20 +143,26 @@ async def refresh_token(refresh_token: str):
     if payload.get("type") != "refresh":
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid refresh token")
 
-    username = payload.get("sub")
-    user = await User.filter(username=username).first()
+    user_id = payload.get("sub")
+    user = await User.filter(id=user_id).first()
     if not user:
         raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="User not found")
 
-    new_access = create_token({"sub": user.username, "type": "access"}, ACCESS_TOKEN_EXPIRE_SECONDS)
+    new_access = create_token(claims(TokenType.access, user), ACCESS_TOKEN_EXPIRE_SECONDS)
     return {"access_token": new_access, "token_type": "bearer"}
 
 
 @router.get("/me")
-async def me(current_user: User = Depends(get_current_user)):
+async def me(user: User = Depends(get_current_user)):
     """Return the currently authenticated user."""
     return {
-        "username": current_user.username,
-        "is_admin": current_user.is_admin,
-        "is_staff": current_user.is_staff,
+        "email": user.email,
+        "username": user.username,
+        "is_admin": user.is_admin,
+        "is_staff": user.is_staff,
     }
+
+
+@router.get("/introspect")
+async def introspect(token: Dict = Depends(get_token)):
+    return token

ohmyapi/cli.py

@@ -9,7 +9,9 @@ from ohmyapi.core import scaffolding, runtime
 from pathlib import Path
 
 app = typer.Typer(help="OhMyAPI — Django-flavored FastAPI scaffolding with tightly integrated TortoiseORM.")
-banner = """OhMyAPI Shell | Project: {project_name}"""
+banner = """OhMyAPI Shell | Project: {project_name}
+Find your loaded project singleton via identifier: `p`
+"""
 
 
 @app.command()
@@ -46,16 +48,14 @@ def shell(root: str = "."):
     try:
         from IPython import start_ipython
         shell_vars = {
-            "settings": project.settings,
-            "project": Path(project_path).resolve(),
+            "p": project,
         }
         from traitlets.config.loader import Config
         c = Config()
         c.TerminalIPythonApp.display_banner = True
-        c.TerminalInteractiveShell.banner1 = banner.format(**{
+        c.TerminalInteractiveShell.banner2 = banner.format(**{
             "project_name": f"{f'{project.settings.PROJECT_NAME} ' if getattr(project.settings, 'PROJECT_NAME', '') else ''}[{Path(project_path).resolve()}]",
         })
-        c.TerminalInteractiveShell.banner2 = " "
         start_ipython(argv=[], user_ns=shell_vars, config=c)
     except ImportError:
         typer.echo("IPython is not installed. Falling back to built-in Python shell.")
@@ -101,9 +101,10 @@ def createsuperuser(root: str = "."):
 
     import asyncio
     import ohmyapi_auth
+    email = input("E-Mail: ")
     username = input("Username: ")
     password = getpass("Password: ")
-    user = ohmyapi_auth.models.User(username=username, is_staff=True, is_admin=True)
+    user = ohmyapi_auth.models.User(email=email, username=username, is_staff=True, is_admin=True)
     user.set_password(password)
     asyncio.run(project.init_orm())
     asyncio.run(user.save())

{ohmyapi-0.1.7.dist-info → ohmyapi-0.1.9.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: ohmyapi
-Version: 0.1.7
+Version: 0.1.9
 Summary: A Django-like but async web-framework based on FastAPI and TortoiseORM.
 License-Expression: MIT
 Keywords: fastapi,tortoise,orm,async,web-framework
@@ -32,26 +32,32 @@ Description-Content-Type: text/markdown
 
 # OhMyAPI
 
-> Think: Micro-Django, but API-first, less clunky and 100% async.
+> Think: Django RestFramework, but less clunky and 100% async.
 
 OhMyAPI is a Django-flavored web-application scaffolding framework and management layer.
 Built around FastAPI and TortoiseORM, it is 100% async.
 
-It is ***blazingly fast***, ***fun*** to use and comes with ***batteries included***!
+It is ***blazingly fast***, ***fun to use*** and comes with ***batteries included***!
 
 **Features**
 
 - Django-like project-layout and -structure
-- Django-like prject-level settings.py
+- Django-like project-level settings.py
 - Django-like models via TortoiseORM
 - Django-like `Model.Meta` class for model configuration
 - Easily convert your query results to `pydantic` models via `Model.Schema`
-- Django-like migrations (makemigrations & migrate) via Aerich
+- Django-like migrations (`makemigrations` & `migrate`) via Aerich
 - Django-like CLI tooling (`startproject`, `startapp`, `shell`, `serve`, etc)
 - Various optional builtin apps you can hook into your project
 - Highly configurable and customizable
 - 100% async
 
+OhMyAPI aims to:
+
+- combine FastAPI, TortoiseORM and Aerich migrations into a high-productivity web-application framework
+- tying everything neatly together into a project structure consisting of apps with models and a router
+- while ***AVOIDING*** to introduce any additional abstractions ontop of Tortoise's model-system or FastAPI's routing
+
 ---
 
 ## Getting started
@@ -114,7 +120,7 @@ from ohmyapi.db import Model, field
 
 
 class Tournament(Model):
-    id = field.IntField(primary_key=True)
+    id = field.data.UUIDField(primary_key=True)
     name = field.TextField()
     created = field.DatetimeField(auto_now_add=True)
 
@@ -123,10 +129,10 @@ class Tournament(Model):
 
 
 class Event(Model):
-    id = field.IntField(primary_key=True)
+    id = field.data.UUIDField(primary_key=True)
     name = field.TextField()
     tournament = field.ForeignKeyField('tournament.Tournament', related_name='events')
-    participants = field.ManyToManyField('torunament.Team', related_name='events', through='event_team')
+    participants = field.ManyToManyField('tournament.Team', related_name='events', through='event_team')
     modified = field.DatetimeField(auto_now=True)
     prize = field.DecimalField(max_digits=10, decimal_places=2, null=True)
 
@@ -135,7 +141,7 @@ class Event(Model):
 
 
 class Team(Model):
-    id = field.IntField(primary_key=True)
+    id = field.data.UUIDField(primary_key=True)
     name = field.TextField()
 
     def __str__(self):
@@ -162,7 +168,7 @@ async def list():
 
 
 @router.get("/:id")
-async def get(id: int):
+async def get(id: str):
     try:
         queryset = Tournament.get(pk=id)
         return await Tournament.Schema.one(queryset)
@@ -209,14 +215,6 @@ Run your project:
 ohmyapi serve
 ```
 
-## Shell
-
-Similar to Django, you can attach to an interactive shell with your project already loaded inside.
-
-```
-ohmyapi shell
-```
-
 ## Authentication
 
 A builtin auth app is available.
@@ -289,7 +287,7 @@ async def list(user: auth.User = Depends(permissions.require_authenticated)):
 
 ### Model-Level Permissions
 
-Use Tortoise's `Manager` to implement model-layer permissions.
+Use Tortoise's `Manager` to implement model-level permissions.
 
 ```python
 from ohmyapi.db import Manager
@@ -297,7 +295,7 @@ from typing import Callable
 
 
 class TeamManager(Manager):
-    async def for_user(self, user):
+    async def for_user(self, user: ohmyapi_auth.models.User):
         return await self.filter(members=user).all()
 
 
@@ -308,3 +306,40 @@ class Team(Model):
         manager = TeamManager()
 ```
 
+## Shell
+
+Similar to Django, you can attach to an interactive shell with your project already loaded inside.
+
+```
+ohmyapi shell
+
+Python 3.13.7 (main, Aug 15 2025, 12:34:02) [GCC 15.2.1 20250813]
+Type 'copyright', 'credits' or 'license' for more information
+IPython 9.5.0 -- An enhanced Interactive Python. Type '?' for help.
+
+OhMyAPI Shell | Project: {{ project_name }} [{{ project_path }}]
+Find your loaded project singleton via identifier: `p`
+```
+
+```python
+In [1]: p
+Out[1]: <ohmyapi.core.runtime.Project at 0xdeadbeefc0febabe>
+
+In [2]: p.apps
+Out[2]:
+{'ohmyapi_auth': App: ohmyapi_auth
+ Models:
+  - Group
+  - User
+ Routes:
+  - APIRoute(path='/auth/login', name='login', methods=['POST'])
+  - APIRoute(path='/auth/refresh', name='refresh_token', methods=['POST'])
+  - APIRoute(path='/auth/me', name='me', methods=['GET'])
+  - APIRoute(path='/auth/introspect', name='introspect', methods=['GET'])}
+
+In [3]: from tournament.models import Tournament
+Out[3]:
+
+```
+
+

{ohmyapi-0.1.7.dist-info → ohmyapi-0.1.9.dist-info}/RECORD

@@ -1,10 +1,10 @@
 ohmyapi/__init__.py,sha256=UmLNQImTbKvHEgwQB2Wsyl6fq88X92imL9QZYJpQX4I,18
 ohmyapi/__main__.py,sha256=wcCrL4PjG51r5wVKqJhcoJPTLfHW0wNbD31DrUN0MWI,28
 ohmyapi/builtin/auth/__init__.py,sha256=TY1RKgwWmJ6FKz_v4J3m0Ang69qSmtVDLe4rqjLk4-E,69
-ohmyapi/builtin/auth/models.py,sha256=PjmRGdQA2uHh3qYODi58WzRdfCwHN4x4r9vlVF6eCqQ,1512
-ohmyapi/builtin/auth/permissions.py,sha256=gPBf01UNgXjU3v3DwMSYpKjayZSnwksp-ji4C99oX_I,111
-ohmyapi/builtin/auth/routes.py,sha256=5jLq92z4TJw4eyiIJ5t7MwRNtYlpN7suDwW28JeEQYA,4902
-ohmyapi/cli.py,sha256=gJIchYR4N4bo65DNePF_Oisksm2du4oAkOktJUiY1a4,3449
+ohmyapi/builtin/auth/models.py,sha256=Xsxn9m5RTgY2a0PPfW3wTj77ocuuISytdl4ec_TR_kw,1524
+ohmyapi/builtin/auth/permissions.py,sha256=NKljLhgEHcEIlzpWgqFyz-1PeCT2u0Vqkja4xy-Zj68,126
+ohmyapi/builtin/auth/routes.py,sha256=DxlVzHSdMIbKMnWXMMGj_M-jUMFLHTt8avzBviM7Ia0,5625
+ohmyapi/cli.py,sha256=ZJVBRpSS297y00H4zffYQzkeIIVmVpGS4BYGpxT1FPo,3430
 ohmyapi/core/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 ohmyapi/core/runtime.py,sha256=l5zffc4VTwQOo7G9mfiYHsPGapMONRX_jtO_z9QaKHU,8577
 ohmyapi/core/scaffolding.py,sha256=iMymscokJ-YqzB0ZTC-gcc2T71o73577j9tnb2x8lH8,2572
@@ -19,7 +19,7 @@ ohmyapi/db/exceptions.py,sha256=I7AubrdqQF_UvAvzKqz2ve08-BkXHzEWXnwG300StHE,35
 ohmyapi/db/model/__init__.py,sha256=k3StTNuKatpwZo_Z5JBFa-927eJrzibFE8U4SA82asc,32
 ohmyapi/db/model/model.py,sha256=BajFtLlQ1s0mZ2hj-_JNQhLQmxuVe-Lw2LuW5t2C7Rw,1579
 ohmyapi/router.py,sha256=hutccsrP9RT8W5O6uBDhOJehwqrkRoPzaUI5zoHPh9A,55
-ohmyapi-0.1.7.dist-info/METADATA,sha256=C2rchwDu2l4Qw4oSqIfOz3P07f7yV2RanYoBzCD2khg,6841
-ohmyapi-0.1.7.dist-info/WHEEL,sha256=M5asmiAlL6HEcOq52Yi5mmk9KmTVjY2RDPtO4p9DMrc,88
-ohmyapi-0.1.7.dist-info/entry_points.txt,sha256=wb3lw8-meAlpiv1mqcQ3m25ukL7djagU_w89GkrC37k,43
-ohmyapi-0.1.7.dist-info/RECORD,,
+ohmyapi-0.1.9.dist-info/METADATA,sha256=9eAyhG-3i6ImpmWhEQaXlfGle9NGvysMCsSqbJ4e3Jc,8065
+ohmyapi-0.1.9.dist-info/WHEEL,sha256=M5asmiAlL6HEcOq52Yi5mmk9KmTVjY2RDPtO4p9DMrc,88
+ohmyapi-0.1.9.dist-info/entry_points.txt,sha256=wb3lw8-meAlpiv1mqcQ3m25ukL7djagU_w89GkrC37k,43
+ohmyapi-0.1.9.dist-info/RECORD,,