swx-core 2.3.3

Production-ready FastAPI framework with RBAC, OAuth, JWT, billing, modular architecture, and base class patterns. Create projects with 'swx new', scaffold with 'swx make:resource --base'.

🚀 SwX-API

SwX-API is a production-ready, enterprise-grade FastAPI framework designed for building scalable SaaS applications. With comprehensive authentication, authorization, billing, rate limiting, audit logging, and more, it provides everything you need to build and deploy production applications.

Built with ❤️ for developers who value flexibility, security, and structure.

🎉 Framework Status: Production Ready v2.0.0

---

✨ Key Features

🔐 Security & Authentication

• ✅ Domain Separation - Admin, User, and System domains completely isolated
• ✅ OAuth2 + JWT - Secure token-based authentication with refresh tokens
• ✅ Social Login - Google, Facebook, and other OAuth providers
• ✅ Token Security - Audience validation, expiration, and revocation
• ✅ Secrets Management - Secure handling of sensitive configuration

🛡️ Authorization & Access Control

• ✅ Permission-First RBAC - Fine-grained access control with team scoping
• ✅ Policy Engine (ABAC) - Attribute-based access control with conditions
• ✅ Team-Scoped Permissions - Multi-tenant support with team isolation
• ✅ Fail-Closed Security - Deny by default, explicit allow

💰 Billing & Entitlements

• ✅ Feature Registry - Centralized feature management
• ✅ Plan Management - Flexible subscription plans (Free, Pro, Team, Enterprise)
• ✅ Entitlement Resolution - Automatic feature access checking
• ✅ Usage Tracking - Quota and metered feature tracking
• ✅ Stripe Integration - Payment processing support

⚡ Performance & Scalability

• ✅ Async Model - Full async/await support for high performance
• ✅ Rate Limiting - Plan-based rate limits with burst protection
• ✅ Redis Caching - In-memory caching for improved performance
• ✅ Background Jobs - Asynchronous job processing with retries
• ✅ Connection Pooling - Optimized database connections with health checks

📊 Operations & Monitoring

• ✅ Audit Logging - Immutable security and business event logs
• ✅ Alerting System - Multi-channel alerts (Slack, Email, SMS, Logs)
• ✅ Health Checks - Comprehensive health monitoring
• ✅ Runtime Settings - Database-backed configuration management
• ✅ Background Jobs - Job queue with retry logic and dead-letter queue

🛠️ Developer Experience

• ✅ Modular Architecture - Clean separation of core and app code
• ✅ Base Classes Pattern - BaseController, BaseService, BaseRepository for rapid development (v2.0)
• ✅ SQLModel ORM - Type-safe database models
• ✅ Alembic Migrations - Database version control
• ✅ CLI Tools - swx command for scaffolding with --base flag for modern patterns
• ✅ Comprehensive Documentation - 50+ documentation files
• ✅ Testing Tools - Unit tests, integration tests, acceptance tests
• ✅ Docker Ready - Complete Docker Compose setup

---

🆕 What's New in v2.0

BaseController / BaseService / BaseRepository

Reduce boilerplate by 80% with the new base classes pattern:

# v2.0 - Modern pattern (recommended)
from swx_core.controllers.base import BaseController
from swx_core.services.base import BaseService
from swx_core.repositories.base import BaseRepository

class ProductRepository(BaseRepository[Product]):
    def __init__(self):
        super().__init__(model=Product)
    # Automatic: find_by_id, find_all, create, update, delete, search, paginate...

class ProductService(BaseService[Product, ProductRepository]):
    def __init__(self):
        super().__init__(repository=ProductRepository())
    # Automatic: get, create, update, delete with events and validation hooks...

class ProductController(BaseController[Product, Create, Update, Public]):
    def __init__(self):
        super().__init__(model=Product, ...)
        self.register_routes()
    # Automatic: GET, POST, PUT, DELETE endpoints...

New Utilities

• Unit of Work - Transaction management with automatic commit/rollback
• Filter Builder - Fluent query filtering and sorting
• Caching Decorators - @cached, @memoize for Redis operations
• Rate Limiting - @rate_limit_by_ip, @rate_limit_by_user
• Testing Utilities - ModelFactory, TestClientWithDB, assertions

CLI Improvements

# Generate resources with base classes (recommended)
swx make:resource Product --base

# Generate legacy patterns
swx make:resource Product

See Migration Guide for upgrading from v1.x.

---

📁 Project Structure

swx-api-latest-backend/
├── swx_core/              # Framework code (reusable)
│   ├── auth/              # Authentication (admin, user, system)
│   ├── cli/               # CLI commands
│   ├── config/            # Configuration
│   ├── controllers/       # BaseController (v2.0)
│   ├── services/          # BaseService (v2.0)
│   ├── repositories/      # BaseRepository (v2.0)
│   ├── database/          # Database setup and utilities
│   ├── middleware/        # Middleware (CORS, logging, rate limiting)
│   ├── models/            # Framework models (User, Role, Permission, etc.)
│   ├── rbac/              # RBAC system
│   ├── routes/            # Framework routes (admin, user, utils)
│   ├── security/          # Security utilities
│   ├── services/          # Framework services (billing, jobs, alerts, etc.)
│   └── utils/             # Utility functions (pagination, caching, filters...)
├── swx_app/               # Application code (your features)
│   ├── controllers/       # Application controllers
│   ├── models/            # Application models
│   ├── repositories/      # Application repositories
│   ├── routes/            # Application routes
│   └── services/          # Application services
├── migrations/            # Alembic migrations
├── docs/                  # Comprehensive documentation
│   ├── 04-core-concepts/
│   │   ├── BASE_CLASSES.md      # BaseController/BaseService/BaseRepository (NEW)
│   │   ├── UTILITIES.md         # All utility modules (NEW)
│   │   └── USAGE_EXAMPLES.md    # Complete usage examples (NEW)
│   └── 07-extending/
│       └── MIGRATION_GUIDE.md   # v1.x to v2.0 migration (NEW)
├── scripts/               # Utility scripts
├── Dockerfile             # Docker configuration
├── docker-compose.yml     # Docker Compose (development)
└── docker-compose.production.yml # Docker Compose (production)

---

🚀 Quick Start

Prerequisites

• Python 3.10+
• Docker & Docker Compose (recommended)
• PostgreSQL 12+
• Redis 6+

Installation

Option 1: Docker (Recommended)

# Clone repository
git clone <repository-url>
cd swx-api-latest-backend

# Copy environment file
cp .env.example .env

# Edit .env with your configuration
# Then start services
docker compose up --build

# Application will be available at:
# - API: http://localhost:8001/api
# - Docs: http://localhost:8001/docs
# - ReDoc: http://localhost:8001/redoc

Option 2: Local Development

# Clone repository
git clone <repository-url>
cd swx-api-latest-backend

# Create virtual environment
python -m venv .venv
source .venv/bin/activate  # On Windows: .venv\Scripts\activate

# Install dependencies
pip install -r requirements.txt
# Or using uv (faster)
uv pip install -r requirements.txt

# Copy environment file
cp .env.example .env

# Run database migrations
alembic upgrade head

# Start development server
uvicorn swx_core.main:app --reload --host 0.0.0.0 --port 8001

Initial Setup

After starting the application:

1. Seed System Data:

   python scripts/seed_system.py
   

2. Verify Installation:

   curl http://localhost:8001/api/utils/health-check
   

3. Access Documentation:

   • Swagger UI: http://localhost:8001/docs
   • ReDoc: http://localhost:8001/redoc

---

📚 Documentation

SwX-API includes comprehensive documentation covering all aspects of the framework:

Getting Started

• Getting Started Guide - Installation and setup
• Overview - Framework introduction
• Architecture - System design

Core Concepts (v2.0)

• Base Classes - Controller/Service/Repository pattern
• Utilities - All utility modules
• Usage Examples - Complete code examples
• Authentication - Auth flows and token security
• RBAC - Role-based access control
• Policy Engine - Attribute-based access control
• Billing - Billing and entitlements
• Rate Limiting - Abuse protection
• Audit Logs - Logging system
• Background Jobs - Async job processing

Security

• Security Model - Overall security architecture
• Token Security - JWT token security
• Secrets Management - Secure secrets handling

Extending

• Extending Guide - Extension patterns
• Adding Features - Feature development
• Migration Guide - v1.x to v2.0 migration

📖 See Documentation Index for complete documentation structure.

---

🛠️ Development

CLI Commands

# Generate resources with base classes (v2.0 - recommended)
swx make:resource Product --base

# Generate resources with legacy patterns
swx make:resource Product

# Database migrations
swx db migrate
swx db revision -m "description"

# Code quality
swx format      # Format code
swx lint        # Lint code

# Interactive shell
swx tinker

---

📊 Example Usage

Base Classes (v2.0)

# Complete resource in minutes
from swx_core.controllers.base import BaseController
from swx_core.services.base import BaseService
from swx_core.repositories.base import BaseRepository
from swx_core.utils.mixins import FullModelMixin

# Model
class Product(FullModelMixin, table=True):
    name: str
    price: float

# Repository
class ProductRepository(BaseRepository[Product]):
    def __init__(self):
        super().__init__(model=Product)

# Service  
class ProductService(BaseService[Product, ProductRepository]):
    def __init__(self):
        super().__init__(repository=ProductRepository())

# Controller
class ProductController(BaseController[Product, ProductCreate, ProductUpdate, ProductPublic]):
    def __init__(self):
        super().__init__(
            model=Product,
            schema_public=ProductPublic,
            schema_create=ProductCreate,
            schema_update=ProductUpdate,
            prefix="/products",
        )
        self.register_routes()

# Automatic endpoints:
# GET    /products          - List with pagination
# GET    /products/{id}      - Get by ID
# POST   /products          - Create
# PUT    /products/{id}     - Update
# DELETE /products/{id}     - Delete

Authentication

# User domain authentication
from swx_core.security.dependencies import get_current_user

@router.get("/user/profile")
async def get_profile(user: User = Depends(get_current_user)):
    return user

Authorization

# Permission-based access
from swx_core.rbac.dependencies import require_permission

@router.get("/users", dependencies=[Depends(require_permission("user:read"))])
async def list_users():
    ...

Rate Limiting

from swx_core.utils.rate_limit import rate_limit_by_user

@router.get("/api/search")
@rate_limit_by_user(requests=100, window=60)  # 100 req/min
async def search(q: str):
    return await search_service.search(q)

---

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.

---

🙏 Acknowledgments

• FastAPI for the excellent web framework
• SQLModel for the ORM
• All contributors and users

---

📞 Support

• Documentation: docs/
• Issues: GitHub Issues
• Discussions: GitHub Discussions

---

Built with ❤️ for developers who value flexibility, security, and structure.