FastAPI-User-Auth is a simple and powerful FastAPI user RBAC authentication and authorization library. Based on FastAPI-Amis-Admin and provides a freely extensible visual management interface.

These details have not been verified by PyPI

Project links

Project description

项目介绍

FastAPI-User-Auth

FastAPI-User-Auth是一个简单而强大的FastAPI用户RBAC认证与授权库.
基于FastAPI-Amis-Admin并提供可自由拓展的可视化管理界面.

源码 · 在线演示 · 文档 · 文档打不开？

FastAPI-User-Auth是一个基于 FastAPI-Amis-Admin 的应用插件,与FastAPI-Amis-Admin深度结合,为其提供用户认证与授权.

安装

pip install fastapi-user-auth

简单示例

from fastapi import FastAPI
from fastapi_amis_admin.amis_admin.settings import Settings
from fastapi_user_auth.site import AuthAdminSite
from starlette.requests import Request

# 创建FastAPI应用
app = FastAPI()

# 创建AdminSite实例
site = AuthAdminSite(settings=Settings(database_url_async='sqlite+aiosqlite:///admisadmin.db'))
auth = site.auth
# 挂载后台管理系统
site.mount_app(app)


# 创建初始化数据库表
@app.on_event("startup")
async def startup():
    await site.create_db_and_tables()
    # 创建默认测试用户, 请及时修改密码!!!
    await auth.create_role_user('admin')
    await auth.create_role_user('vip')


# 要求: 用户必须登录
@app.get("/auth/get_user")
@auth.requires()
def get_user(request: Request):
    return request.user


if __name__ == '__main__':
    import uvicorn

    uvicorn.run(app, debug=True)

验证方式

装饰器

推荐场景: 单个路由.支持同步/异步路由.

# 要求: 用户必须登录
@app.get("/auth/user")
@auth.requires()
def user(request: Request):
    return request.user  # 当前请求用户对象.


# 验证路由: 用户拥有admin角色
@app.get("/auth/admin_roles")
@auth.requires('admin')
def admin_roles(request: Request):
    return request.user


# 要求: 用户拥有vip角色
# 支持同步/异步路由
@app.get("/auth/vip_roles")
@auth.requires(['vip'])
async def vip_roles(request: Request):
    return request.user


# 要求: 用户拥有admin角色 或 vip角色
@app.get("/auth/admin_or_vip_roles")
@auth.requires(roles=['admin', 'vip'])
def admin_or_vip_roles(request: Request):
    return request.user


# 要求: 用户属于admin用户组
@app.get("/auth/admin_groups")
@auth.requires(groups=['admin'])
def admin_groups(request: Request):
    return request.user


# 要求: 用户拥有admin角色 且 属于admin用户组
@app.get("/auth/admin_roles_and_admin_groups")
@auth.requires(roles=['admin'], groups=['admin'])
def admin_roles_and_admin_groups(request: Request):
    return request.user


# 要求: 用户拥有vip角色 且 拥有`article:update`权限
@app.get("/auth/vip_roles_and_article_update")
@auth.requires(roles=['vip'], permissions=['article:update'])
def vip_roles_and_article_update(request: Request):
    return request.user

依赖项

推荐场景: 路由集合,FastAPI应用

from fastapi import Depends
from typing import Tuple
from fastapi_user_auth.auth import Auth
from fastapi_user_auth.auth.models import User


# 路由参数依赖项
@app.get("/auth/admin_roles_depend_1")
def admin_roles(request: Request,
                auth_result: Tuple[Auth, User] = Depends(auth.requires('admin')())):
    return request.user


# 路径操作装饰器依赖项
@app.get("/auth/admin_roles_depend_2", dependencies=[Depends(auth.requires('admin')())])
def admin_roles(request: Request):
    return request.user


# 全局依赖项
# 在app应用下全部请求都要求拥有admin角色
app = FastAPI(dependencies=[Depends(auth.requires('admin')())])


@app.get("/auth/admin_roles_depend_3")
def admin_roles(request: Request):
    return request.user

中间件

推荐场景: FastAPI应用

app = FastAPI()
# 在app应用下每条请求处理之前都附加`request.auth`和`request.user`对象
auth.backend.attach_middleware(app)

直接调用

推荐场景: 非路由方法

from fastapi_user_auth.auth.models import User


async def get_request_user(request: Request) -> Optional[User]:
    if await auth.requires('admin', response=False)(request):
        return request.user
    else:
        return None

Token存储后端

fastapi-user-auth 支持多种token存储方式.默认为: DbTokenStore, 建议自定义修改为: JwtTokenStore

JwtTokenStore

from fastapi_user_auth.auth.backends.jwt import JwtTokenStore
from sqlalchemy.ext.asyncio import create_async_engine
from fastapi_amis_admin.utils.db import SqlalchemyAsyncClient

# 创建异步数据库引擎
engine = create_async_engine(url='sqlite+aiosqlite:///admisadmin.db', future=True)
# 使用`JwtTokenStore`创建auth对象
auth = Auth(db=SqlalchemyAsyncClient(engine),
            token_store=JwtTokenStore(secret_key='09d25e094faa6ca2556c818166b7a9563b93f7099f6f0f4caa6cf63b88e8d3e7'))

# 将auth对象传入AdminSite
site = AuthAdminSite(settings=Settings(database_url_async='sqlite+aiosqlite:///admisadmin.db'),
                     auth=auth)

DbTokenStore

# 使用`DbTokenStore`创建auth对象
from fastapi_user_auth.auth.backends.db import DbTokenStore

auth = Auth(db=SqlalchemyAsyncClient(engine),
            token_store=DbTokenStore(db=SqlalchemyAsyncClient(engine)))

RedisTokenStore

# 使用`RedisTokenStore`创建auth对象
from fastapi_user_auth.auth.backends.redis import RedisTokenStore
from aioredis import Redis

auth = Auth(db=SqlalchemyAsyncClient(engine),
            token_store=RedisTokenStore(redis=Redis.from_url('redis://localhost?db=0')))

RBAC模型

本系统采用的RBAC模型如下, 你也可以根据自己的需求进行拓展.

参考: 权限系统的设计

flowchart LR
	 User -. m:n .-> Group 
	 User -. m:n .-> Role 
     Group -. m:n .-> Role 
	 Role -. m:n .-> Perimission

界面预览

Open http://127.0.0.1:8000/admin/auth/form/login in your browser:

Open http://127.0.0.1:8000/admin/ in your browser:

ModelAdmin

Open http://127.0.0.1:8000/admin/docs in your browser:

Docs

未来计划

bug修复,细节完善.
完善用户教程文档.
不断拓展与完善核心功能.

许可协议

fastapi-amis-admin基于Apache2.0开源免费使用，可以免费用于商业用途，但请在展示界面中明确显示关于FastAPI-Amis-Admin的版权信息.

鸣谢

感谢以下开发者对 FastAPI-User-Auth 作出的贡献：

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

0.7.3

Mar 31, 2024

0.7.2

Jan 12, 2024

0.7.1

Jan 6, 2024

0.7.1a4 pre-release

Jan 4, 2024

0.7.1a3 pre-release

Dec 25, 2023

0.7.1a2 pre-release

Dec 22, 2023

0.7.1a1 pre-release

Dec 22, 2023

0.7.0

Dec 22, 2023

0.7.0a3 pre-release

Dec 17, 2023

0.7.0a2 pre-release

Dec 14, 2023

0.7.0a1 pre-release

Dec 14, 2023

0.6.2

Sep 28, 2023

0.6.1

Sep 16, 2023

0.5.1

Aug 5, 2023

0.5.0

Mar 4, 2023

0.4.3

Feb 13, 2023

0.4.2

Nov 16, 2022

0.4.2a1 pre-release

Nov 16, 2022

0.4.1

Nov 2, 2022

0.4.0

Nov 1, 2022

0.4.0a1 pre-release

Oct 29, 2022

0.3.0

Oct 18, 2022

0.2.4

Oct 1, 2022

0.2.4a3 pre-release

Oct 1, 2022

0.2.4a2 pre-release

Sep 30, 2022

0.2.4a1 pre-release

Sep 30, 2022

0.2.3

Sep 28, 2022

0.2.3a2 pre-release

Sep 28, 2022

0.2.3a1 pre-release

Sep 27, 2022

0.2.2

Sep 23, 2022

0.2.1

Aug 31, 2022

0.2.0

Jul 1, 2022

0.1.3

Jun 17, 2022

0.1.2

Jun 1, 2022

This version

0.1.1

May 22, 2022

0.1.0

May 18, 2022

0.0.23

May 13, 2022

0.0.22

Mar 28, 2022

0.0.21

Mar 20, 2022

0.0.20

Mar 17, 2022

0.0.19

Mar 9, 2022

0.0.18

Mar 7, 2022

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

fastapi_user_auth-0.1.1.tar.gz (24.5 kB view details)

Uploaded May 22, 2022 Source

Built Distribution

fastapi_user_auth-0.1.1-py3-none-any.whl (23.7 kB view details)

Uploaded May 22, 2022 Python 3

File details

Details for the file fastapi_user_auth-0.1.1.tar.gz.

File metadata

Download URL: fastapi_user_auth-0.1.1.tar.gz
Upload date: May 22, 2022
Size: 24.5 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: python-requests/2.27.1

File hashes

Hashes for fastapi_user_auth-0.1.1.tar.gz
Algorithm	Hash digest
SHA256	`c74a5927ac23bc2719bc1881e89b5bf443afdc16b544d58130db902148e37193`
MD5	`4a99e24355c175c2b044c42021921238`
BLAKE2b-256	`df07b4bf030ddaf299ebbf67d29257934e4e5bbd2946696e96127105f6e0a876`

See more details on using hashes here.

File details

Details for the file fastapi_user_auth-0.1.1-py3-none-any.whl.

File metadata

Download URL: fastapi_user_auth-0.1.1-py3-none-any.whl
Upload date: May 22, 2022
Size: 23.7 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: python-requests/2.27.1

File hashes

Hashes for fastapi_user_auth-0.1.1-py3-none-any.whl
Algorithm	Hash digest
SHA256	`89adc2a7ad62ae66a022bdc904054424f8a3e9a4f9b4c82e75086dfb02473638`
MD5	`00a1f397a30e25cb3cd841e265205476`
BLAKE2b-256	`0b78fd748044e9eb6ca18f795f5f37d075348717eae967bf0fd154397997d31d`