├── .dockerignore
├── .env
├── .gitignore
├── Dockerfile
├── README.md
├── SECURITY.md
├── docker-compose.yml
├── frontend
    ├── .dockerignore
    ├── .gitignore
    ├── Dockerfile
    ├── README.md
    ├── babel.config.js
    ├── package-lock.json
    ├── package.json
    ├── public
    │   ├── favicon.ico
    │   └── index.html
    └── src
    │   ├── App.vue
    │   ├── assets
    │       └── logo.png
    │   ├── components
    │       ├── HelloWorld.vue
    │       ├── Nav.vue
    │       ├── auth
    │       │   └── Login.vue
    │       ├── posts
    │       │   ├── EditPost.vue
    │       │   ├── MyPosts.vue
    │       │   ├── NewPost.vue
    │       │   └── PublicPosts.vue
    │       └── users
    │       │   ├── EditUser.vue
    │       │   ├── ListUser.vue
    │       │   └── Register.vue
    │   └── main.js
├── makefile
├── requirements.txt
└── src
    ├── __init__.py
    ├── api
        ├── __init__.py
        ├── auth_api.py
        ├── exceptions.py
        ├── post_api.py
        └── user_api.py
    ├── core
        ├── __init__.py
        ├── config.py
        └── db.py
    ├── main.py
    ├── models
        ├── __init__.py
        ├── post.py
        └── user.py
    ├── serializers
        ├── __init__.py
        ├── comment.py
        ├── post.py
        ├── token.py
        └── user.py
    └── tests
        ├── __init__.py
        ├── conftest.py
        └── endpoints
            ├── __init__.py
            ├── test_oauth.py
            ├── test_post.py
            └── test_user.py


/.dockerignore:
--------------------------------------------------------------------------------
 1 | __pycache__
 2 | *.pyc
 3 | *.pyo
 4 | *.pyd
 5 | .Python
 6 | env
 7 | venv
 8 | pip-log.txt
 9 | pip-delete-this-directory.txt
10 | .tox
11 | .coverage
12 | .coverage.*
13 | .cache
14 | nosetests.xml
15 | coverage.xml
16 | *,cover
17 | *.log
18 | .git
19 | .mypy_cache
20 | .pytest_cache
21 | .hypothesis
22 | 
23 | .git
24 | .dockerignore
25 | .gitignore
26 | .github/*
27 | README.md
28 | Dockerfile


--------------------------------------------------------------------------------
/.env:
--------------------------------------------------------------------------------
1 | 
2 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
  1 | ### macOS ###
  2 | # General
  3 | .DS_Store
  4 | .AppleDouble
  5 | .LSOverride
  6 | 
  7 | # Icon must end with two \r
  8 | Icon
  9 | 
 10 | # Thumbnails
 11 | ._*
 12 | 
 13 | # Files that might appear in the root of a volume
 14 | .DocumentRevisions-V100
 15 | .fseventsd
 16 | .Spotlight-V100
 17 | .TemporaryItems
 18 | .Trashes
 19 | .VolumeIcon.icns
 20 | .com.apple.timemachine.donotpresent
 21 | 
 22 | # Directories potentially created on remote AFP share
 23 | .AppleDB
 24 | .AppleDesktop
 25 | Network Trash Folder
 26 | Temporary Items
 27 | .apdisk
 28 | 
 29 | ### OSX ###
 30 | # General
 31 | 
 32 | # Icon must end with two \r
 33 | 
 34 | # Thumbnails
 35 | 
 36 | # Files that might appear in the root of a volume
 37 | 
 38 | # Directories potentially created on remote AFP share
 39 | 
 40 | ### Python ###
 41 | # Byte-compiled / optimized / DLL files
 42 | __pycache__/
 43 | *.py[cod]
 44 | *$py.class
 45 | 
 46 | # C extensions
 47 | *.so
 48 | 
 49 | # Distribution / packaging
 50 | .Python
 51 | build/
 52 | develop-eggs/
 53 | dist/
 54 | downloads/
 55 | eggs/
 56 | .eggs/
 57 | lib/
 58 | lib64/
 59 | parts/
 60 | sdist/
 61 | var/
 62 | wheels/
 63 | pip-wheel-metadata/
 64 | share/python-wheels/
 65 | *.egg-info/
 66 | .installed.cfg
 67 | *.egg
 68 | MANIFEST
 69 | 
 70 | # PyInstaller
 71 | #  Usually these files are written by a python script from a template
 72 | #  before PyInstaller builds the exe, so as to inject date/other infos into it.
 73 | *.manifest
 74 | *.spec
 75 | 
 76 | # Installer logs
 77 | pip-log.txt
 78 | pip-delete-this-directory.txt
 79 | 
 80 | # Unit test / coverage reports
 81 | htmlcov/
 82 | .tox/
 83 | .nox/
 84 | .coverage
 85 | .coverage.*
 86 | .cache
 87 | nosetests.xml
 88 | coverage.xml
 89 | *.cover
 90 | .hypothesis/
 91 | .pytest_cache/
 92 | 
 93 | # Translations
 94 | *.mo
 95 | *.pot
 96 | 
 97 | # Scrapy stuff:
 98 | .scrapy
 99 | 
100 | # Sphinx documentation
101 | docs/_build/
102 | 
103 | # PyBuilder
104 | target/
105 | 
106 | # pyenv
107 | .python-version
108 | 
109 | # pipenv
110 | #   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
111 | #   However, in case of collaboration, if having platform-specific dependencies or dependencies
112 | #   having no cross-platform support, pipenv may install dependencies that don't work, or not
113 | #   install all needed dependencies.
114 | #Pipfile.lock
115 | 
116 | # celery beat schedule file
117 | celerybeat-schedule
118 | 
119 | # SageMath parsed files
120 | *.sage.py
121 | 
122 | # Spyder project settings
123 | .spyderproject
124 | .spyproject
125 | 
126 | # Rope project settings
127 | .ropeproject
128 | 
129 | # Mr Developer
130 | .mr.developer.cfg
131 | .project
132 | .pydevproject
133 | 
134 | # mkdocs documentation
135 | /site
136 | 
137 | # mypy
138 | .mypy_cache/
139 | .dmypy.json
140 | dmypy.json
141 | 
142 | # Pyre type checker
143 | .pyre/
144 | 
145 | ### VirtualEnv ###
146 | pyvenv.cfg
147 | .env
148 | .venv
149 | env/
150 | venv/
151 | ENV/
152 | env.bak/
153 | venv.bak/
154 | pip-selfcheck.json
155 | 
156 | 
157 | # Editor
158 | .vscode
159 | .idea
160 | 


--------------------------------------------------------------------------------
/Dockerfile:
--------------------------------------------------------------------------------
 1 | # pull official base image
 2 | FROM python:3.8.5
 3 | 
 4 | # set work directory
 5 | WORKDIR /home/app/backend
 6 | 
 7 | # set environment variables
 8 | ENV PYTHONDONTWRITEBYTECODE 1
 9 | ENV PYTHONUNBUFFERED 1
10 | 
11 | # install dependencies
12 | RUN pip install --upgrade pip
13 | COPY ./requirements.txt .
14 | RUN pip install -r requirements.txt
15 | 
16 | # copy project
17 | COPY src ./src


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Blog API with FastAPI
 2 | 
 3 | Simple project that I write using fastapi, motor, and umongo for the backend. VueJS on the frontend.
 4 | 
 5 | ----------------------------
 6 | ## Commands
 7 | 
 8 | ### Run 
 9 | Run the app using the following command:
10 | 
11 | ```
12 | docker-compose up -d --build
13 | # or
14 | make up
15 | ```
16 | 
17 | 
18 | ### Remove container
19 | remove container
20 | 
21 | ```
22 | docker-compose down
23 | # or
24 | make down
25 | 
26 | # delete all previous containers and volume included
27 | docker-compose down -v --remove-orphans 
28 | # or
29 | make down-all
30 | ```
31 | 
32 | ### Log Monitor
33 | 
34 | Monitor log for all services (mongodb, backend/api, frontend/vuejs)
35 | ```
36 | docker-compose logs -f
37 | # or
38 | make logs
39 | ```
40 | 
41 | Monitor log for backend service only
42 | ```
43 | docker-compose logs -f backend
44 | # or
45 | make logs-backend
46 | ```
47 | 
48 | ### Run Test for the backend service
49 | ```
50 | docker-compose exec backend pytest
51 | # or
52 | make test-backend
53 | ```
54 | 
55 | ----------------------------
56 | 
57 | The API Documentation url:
58 | http://127.0.0.1:8000/docs
59 | 
60 | 
61 | The Blog:
62 | http://127.0.0.1:8080
63 | 


--------------------------------------------------------------------------------
/SECURITY.md:
--------------------------------------------------------------------------------
 1 | # Security Policy
 2 | 
 3 | ## Supported Versions
 4 | 
 5 | Use this section to tell people about which versions of your project are
 6 | currently being supported with security updates.
 7 | 
 8 | | Version | Supported          |
 9 | | ------- | ------------------ |
10 | | 5.1.x   | :white_check_mark: |
11 | | 5.0.x   | :x:                |
12 | | 4.0.x   | :white_check_mark: |
13 | | < 4.0   | :x:                |
14 | 
15 | ## Reporting a Vulnerability
16 | 
17 | Use this section to tell people how to report a vulnerability.
18 | 
19 | Tell them where to go, how often they can expect to get an update on a
20 | reported vulnerability, what to expect if the vulnerability is accepted or
21 | declined, etc.
22 | 


--------------------------------------------------------------------------------
/docker-compose.yml:
--------------------------------------------------------------------------------
 1 | version: '3.9'
 2 | 
 3 | services:
 4 |   backend:
 5 |     build: .
 6 |     command: uvicorn src.main:app --reload --host 0.0.0.0 --port 8000
 7 |     environment:
 8 |       BASE_PATH_API: /api
 9 |       SECRET_KEY: secretkey
10 |       ALLOWED_HOSTS: 127.0.0.1,localhost
11 |       MONGODB_NAME: blog-fastapi
12 |       MONGODB_URI: mongodb://mongodbuser:mongodbpassword@mongodb:27017
13 |     volumes:
14 |       - ./src/:/home/app/backend/src
15 |     env_file:
16 |       - ./.env
17 |     depends_on:
18 |       - mongodb
19 |     ports:
20 |       - "8000:8000"
21 |   frontend:
22 |     build: ./frontend
23 |     volumes:
24 |       - ./frontend:/home/app/frontend
25 |       - /home/app/frontend/node_modules
26 |     depends_on:
27 |       - backend
28 |     ports:
29 |       - "8080:8080"
30 |   mongodb:
31 |     image: mongo:4.0.8
32 |     restart: unless-stopped
33 |     command: mongod --auth
34 |     environment:
35 |       MONGO_INITDB_ROOT_USERNAME: mongodbuser
36 |       MONGO_INITDB_ROOT_PASSWORD: mongodbpassword
37 |       MONGO_INITDB_DATABASE: blog-fastapi
38 |       MONGODB_DATA_DIR: /data/db
39 |       MONDODB_LOG_DIR: /dev/null
40 |     volumes:
41 |       - mongodbdata:/data/db
42 | 
43 | 
44 | volumes:
45 |   mongodbdata:


--------------------------------------------------------------------------------
/frontend/.dockerignore:
--------------------------------------------------------------------------------
 1 | .git
 2 | .dockerignore
 3 | .gitignore
 4 | .github/*
 5 | README.md
 6 | Dockerfile
 7 | 
 8 | # Artifacts that will be built during image creation.
 9 | # This should contain all files created during `yarn build`.
10 | dist
11 | node_modules


--------------------------------------------------------------------------------
/frontend/.gitignore:
--------------------------------------------------------------------------------
 1 | .DS_Store
 2 | node_modules
 3 | /dist
 4 | 
 5 | # local env files
 6 | .env.local
 7 | .env.*.local
 8 | 
 9 | # Log files
10 | npm-debug.log*
11 | yarn-debug.log*
12 | yarn-error.log*
13 | 
14 | # Editor directories and files
15 | .idea
16 | .vscode
17 | *.suo
18 | *.ntvs*
19 | *.njsproj
20 | *.sln
21 | *.sw?
22 | 


--------------------------------------------------------------------------------
/frontend/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM node:lts-alpine
 2 | 
 3 | WORKDIR /home/app/frontend
 4 | 
 5 | COPY package*.json ./
 6 | 
 7 | RUN npm install
 8 | 
 9 | EXPOSE 8080
10 | 
11 | CMD ["npm", "run", "serve"]


--------------------------------------------------------------------------------
/frontend/README.md:
--------------------------------------------------------------------------------
 1 | # frontend
 2 | 
 3 | ## Project setup
 4 | ```
 5 | yarn install
 6 | ```
 7 | 
 8 | ### Compiles and hot-reloads for development
 9 | ```
10 | yarn run serve
11 | ```
12 | 
13 | ### Compiles and minifies for production
14 | ```
15 | yarn run build
16 | ```
17 | 
18 | ### Run your tests
19 | ```
20 | yarn run test
21 | ```
22 | 
23 | ### Lints and fixes files
24 | ```
25 | yarn run lint
26 | ```
27 | 
28 | ### Customize configuration
29 | See [Configuration Reference](https://cli.vuejs.org/config/).
30 | 


--------------------------------------------------------------------------------
/frontend/babel.config.js:
--------------------------------------------------------------------------------
1 | module.exports = {
2 |   presets: [
3 |     '@vue/cli-plugin-babel/preset'
4 |   ]
5 | }
6 | 


--------------------------------------------------------------------------------
/frontend/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "frontend",
 3 |   "version": "0.1.0",
 4 |   "private": true,
 5 |   "scripts": {
 6 |     "serve": "vue-cli-service serve",
 7 |     "build": "vue-cli-service build",
 8 |     "lint": "vue-cli-service lint"
 9 |   },
10 |   "dependencies": {
11 |     "axios": "^0.21.2",
12 |     "bootstrap": "^4.4.1",
13 |     "core-js": "^3.6.4",
14 |     "nprogress": "^0.2.0",
15 |     "vue": "^2.6.11",
16 |     "vue-axios": "^2.1.5",
17 |     "vue-router": "^3.1.6"
18 |   },
19 |   "devDependencies": {
20 |     "@vue/cli-plugin-babel": "^4.2.0",
21 |     "@vue/cli-plugin-eslint": "^4.2.0",
22 |     "@vue/cli-service": "^4.2.0",
23 |     "babel-eslint": "^10.0.3",
24 |     "eslint": "^6.7.2",
25 |     "eslint-plugin-vue": "^6.1.2",
26 |     "vue-template-compiler": "^2.6.11"
27 |   },
28 |   "eslintConfig": {
29 |     "root": true,
30 |     "env": {
31 |       "node": true
32 |     },
33 |     "extends": [
34 |       "plugin:vue/essential",
35 |       "eslint:recommended"
36 |     ],
37 |     "parserOptions": {
38 |       "parser": "babel-eslint"
39 |     },
40 |     "rules": {}
41 |   },
42 |   "browserslist": [
43 |     "> 1%",
44 |     "last 2 versions"
45 |   ]
46 | }
47 | 


--------------------------------------------------------------------------------
/frontend/public/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/frontend/public/favicon.ico


--------------------------------------------------------------------------------
/frontend/public/index.html:
--------------------------------------------------------------------------------
 1 | <!DOCTYPE html>
 2 | <html lang="en">
 3 |   <head>
 4 |     <meta charset="utf-8">
 5 |     <meta http-equiv="X-UA-Compatible" content="IE=edge">
 6 |     <meta name="viewport" content="width=device-width,initial-scale=1.0">
 7 |     <link rel="icon" href="<%= BASE_URL %>favicon.ico">
 8 |     <title>Blog</title>
 9 |   </head>
10 |   <body>
11 |     <noscript>
12 |       <strong>We're sorry but <%= htmlWebpackPlugin.options.title %> doesn't work properly without JavaScript enabled. Please enable it to continue.</strong>
13 |     </noscript>
14 |     <div id="app"></div>
15 |     <!-- built files will be auto injected -->
16 |   </body>
17 | </html>
18 | 


--------------------------------------------------------------------------------
/frontend/src/App.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div id="app">
 3 |         <Nav/>
 4 | 
 5 |         <transition name="fade">
 6 |             <div class="gap">
 7 |                 <div class="container mt-4 d-flex justify-content-center">
 8 |                     <router-view></router-view>
 9 |                 </div>
10 |             </div>
11 |         </transition>
12 |     </div>
13 | </template>
14 | 
15 | <script>
16 |     import Nav from "./components/Nav";
17 | 
18 |     export default {
19 |         components: {Nav}
20 |     };
21 | </script>
22 | 
23 | <style>
24 |     .fade-enter-active,
25 |     .fade-leave-active {
26 |         transition: opacity 0.5s;
27 |     }
28 | 
29 |     .fade-enter,
30 |     .fade-leave-active {
31 |         opacity: 0;
32 |     }
33 | </style>


--------------------------------------------------------------------------------
/frontend/src/assets/logo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/frontend/src/assets/logo.png


--------------------------------------------------------------------------------
/frontend/src/components/HelloWorld.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <div class="hello">
 3 |     <h1>{{ msg }}</h1>
 4 |     <p>
 5 |       For a guide and recipes on how to configure / customize this project,<br>
 6 |       check out the
 7 |       <a href="https://cli.vuejs.org" target="_blank" rel="noopener">vue-cli documentation</a>.
 8 |     </p>
 9 |     <h3>Installed CLI Plugins</h3>
10 |     <ul>
11 |       <li><a href="https://github.com/vuejs/vue-cli/tree/dev/packages/%40vue/cli-plugin-babel" target="_blank" rel="noopener">babel</a></li>
12 |       <li><a href="https://github.com/vuejs/vue-cli/tree/dev/packages/%40vue/cli-plugin-eslint" target="_blank" rel="noopener">eslint</a></li>
13 |     </ul>
14 |     <h3>Essential Links</h3>
15 |     <ul>
16 |       <li><a href="https://vuejs.org" target="_blank" rel="noopener">Core Docs</a></li>
17 |       <li><a href="https://forum.vuejs.org" target="_blank" rel="noopener">Forum</a></li>
18 |       <li><a href="https://chat.vuejs.org" target="_blank" rel="noopener">Community Chat</a></li>
19 |       <li><a href="https://twitter.com/vuejs" target="_blank" rel="noopener">Twitter</a></li>
20 |       <li><a href="https://news.vuejs.org" target="_blank" rel="noopener">News</a></li>
21 |     </ul>
22 |     <h3>Ecosystem</h3>
23 |     <ul>
24 |       <li><a href="https://router.vuejs.org" target="_blank" rel="noopener">vue-router</a></li>
25 |       <li><a href="https://vuex.vuejs.org" target="_blank" rel="noopener">vuex</a></li>
26 |       <li><a href="https://github.com/vuejs/vue-devtools#vue-devtools" target="_blank" rel="noopener">vue-devtools</a></li>
27 |       <li><a href="https://vue-loader.vuejs.org" target="_blank" rel="noopener">vue-loader</a></li>
28 |       <li><a href="https://github.com/vuejs/awesome-vue" target="_blank" rel="noopener">awesome-vue</a></li>
29 |     </ul>
30 |   </div>
31 | </template>
32 | 
33 | <script>
34 | export default {
35 |   name: 'HelloWorld',
36 |   props: {
37 |     msg: String
38 |   }
39 | }
40 | </script>
41 | 
42 | <!-- Add "scoped" attribute to limit CSS to this component only -->
43 | <style scoped>
44 | h3 {
45 |   margin: 40px 0 0;
46 | }
47 | ul {
48 |   list-style-type: none;
49 |   padding: 0;
50 | }
51 | li {
52 |   display: inline-block;
53 |   margin: 0 10px;
54 | }
55 | a {
56 |   color: #42b983;
57 | }
58 | </style>
59 | 


--------------------------------------------------------------------------------
/frontend/src/components/Nav.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <nav class="navbar navbar-expand-lg bg-light">
 3 |         <div class="container">
 4 |             <button aria-controls="navbarTogglerDemo01" aria-expanded="false" aria-label="Toggle navigation"
 5 |                     class="navbar-toggler"
 6 |                     data-target="#navbarNav" data-toggle="collapse" type="button">
 7 |                 <span class="navbar-toggler-icon"></span>
 8 |             </button>
 9 |             <div class="collapse navbar-collapse" id="navbarNav">
10 |                 <a class="navbar-brand" href="/">Blog</a>
11 |                 <ul class="navbar-nav mr-auto" v-if="loggedIn()">
12 |                     <li class="nav-item">
13 |                         <router-link class="nav-link" :to="{name:'my-posts'}">My Posts</router-link>
14 |                     </li>
15 |                     <li class="nav-item">
16 |                         <router-link class="nav-link" :to="{name:'new-post'}">New Post</router-link>
17 |                     </li>
18 |                 </ul>
19 |                 <ul class="navbar-nav mr-auto" v-else></ul>
20 |                 <ul class="navbar-nav my-2 my-lg-0" v-if="loggedIn()">
21 |                     <li class="nav-item">
22 |                         <a class="nav-link text-dark">{{userEmail}}</a>
23 |                     </li>
24 |                     <li class="nav-item">
25 |                         <a class="nav-link" href="javascript:void(0)" v-on:click="logOut">Log Out</a>
26 |                     </li>
27 |                 </ul>
28 |                 <ul class="navbar-nav my-2 my-lg-0" v-else>
29 |                     <li class="nav-item">
30 |                         <router-link :to="{name: 'register'}" class="nav-link">Register</router-link>
31 |                     </li>
32 |                     <li class="nav-item">
33 |                         <router-link :to="{name: 'login'}" class="nav-link">Login</router-link>
34 |                     </li>
35 |                 </ul>
36 |             </div>
37 |         </div>
38 |     </nav>
39 | </template>
40 | 
41 | <script>
42 |     export default {
43 |         name: "Nav",
44 |         computed: {
45 |             userEmail() {
46 |                 return localStorage.getItem('email')
47 |             }
48 |         },
49 |         methods: {
50 |             loggedIn() {
51 |                 return localStorage.getItem('loggedIn')
52 |             },
53 |             logOut() {
54 |                 localStorage.removeItem('actoken')
55 |                 localStorage.removeItem('loggedIn')
56 |                 localStorage.removeItem('email')
57 |                 this.$router.replace({name: 'login'})
58 |                 window.location.reload()
59 |             }
60 |         }
61 |     }
62 | </script>
63 | 
64 | <style scoped>
65 | 
66 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/auth/Login.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="col-md-5">
 3 |         <div class="container">
 4 |             <div class="card">
 5 |                 <div class="card-header">
 6 |                     <h3>Login</h3>
 7 |                 </div>
 8 |                 <div class="card-body">
 9 |                     <div class="alert alert-danger" role="alert" v-if="invalidLogin">
10 |                         Invalid Email or Password
11 |                     </div>
12 |                     <form v-on:submit.prevent="login">
13 |                         <div class="form-group">
14 |                             <label>Email:</label>
15 |                             <input class="form-control" type="email" v-model="email"/>
16 |                         </div>
17 |                         <div class="form-group">
18 |                             <label>Password:</label>
19 |                             <input class="form-control" type="password" v-model="password"/>
20 |                         </div>
21 |                         <div class="form-group">
22 |                             <button class="btn btn-primary w-100" disabled type="button" v-if="loading">
23 |                                 <span aria-hidden="true" class="spinner-grow spinner-grow-sm" role="status"></span>
24 |                                 Login
25 |                             </button>
26 |                             <button class="btn btn-primary w-100" type="submit" v-else>Login</button>
27 |                         </div>
28 |                     </form>
29 |                 </div>
30 |             </div>
31 |         </div>
32 |     </div>
33 | </template>
34 | 
35 | <script>
36 |     export default {
37 |         data() {
38 |             return {
39 |                 email: '',
40 |                 password: '',
41 |                 invalidLogin: false,
42 |                 loading: false,
43 |             }
44 |         },
45 |         methods: {
46 |             login() {
47 |                 this.loading = true
48 |                 let data = new FormData()
49 |                 data.append('grant_type', 'password')
50 |                 data.append('username', this.email)
51 |                 data.append('password', this.password)
52 |                 let uri = '/oauth/token'
53 |                 this.axios.post(uri, data).then((response) => {
54 |                     localStorage.setItem('actoken', response.data.access_token)
55 |                     localStorage.setItem('loggedIn', true)
56 | 
57 |                     this.axios.get('/users/me', {
58 |                             headers: {Authorization: `Bearer ${response.data.access_token}`}
59 |                         }
60 |                     ).then(response => {
61 |                         localStorage.setItem('email', response.data.email)
62 |                         this.$router.replace({name: 'my-posts'})
63 |                         this.loading = false
64 |                         window.location.reload()
65 |                     })
66 |                 }).catch(() => {
67 |                     this.invalidLogin = true
68 |                     this.loading = false
69 |                 })
70 |             }
71 |         }
72 |     }
73 | </script>
74 | 
75 | <style scoped>
76 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/posts/EditPost.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="col-md-8">
 3 |         <div class="container">
 4 |             <div class="card" v-if="!isNotFound">
 5 |                 <div class="card-header">
 6 |                     <h3>{{post.title}}</h3>
 7 |                 </div>
 8 |                 <div class="card-body">
 9 |                     <form v-on:submit.prevent="savePost">
10 |                         <div class="form-group">
11 |                             <label>Title:</label>
12 |                             <input :class="{'is-invalid': errors.title}" class="form-control" type="text"
13 |                                    v-model="post.title"/>
14 |                             <div class="invalid-feedback" v-if="errors.title">{{errors.title}}</div>
15 |                         </div>
16 |                         <div class="form-group">
17 |                             <label>Body of Content:</label>
18 |                             <textarea :class="{'is-invalid': errors.content}" class="form-control" rows="10"
19 |                                       v-model="post.content"></textarea>
20 |                             <div class="invalid-feedback" v-if="errors.content">{{errors.content}}</div>
21 |                         </div>
22 |                         <div class="alert alert-success" role="alert" v-if="saved">
23 |                             Post has been updated. Go to
24 |                             <router-link :to="{name:'my-posts'}">My Posts</router-link>
25 |                         </div>
26 |                         <div class="form-group">
27 |                             <button class="btn btn-primary" disabled type="button" v-if="loading">
28 |                                 <span aria-hidden="true" class="spinner-grow spinner-grow-sm" role="status"></span>
29 |                                 Save
30 |                             </button>
31 |                             <button class="btn btn-primary" type="submit" v-else>Save</button>
32 |                         </div>
33 |                     </form>
34 | 
35 |                 </div>
36 |             </div>
37 |             <div class="card" v-else>
38 |                 <div class="card-body text-center">
39 |                     <h3>Not Found</h3>
40 |                 </div>
41 |             </div>
42 |         </div>
43 |     </div>
44 | </template>
45 | 
46 | <script>
47 |     export default {
48 |         name: "EditPost",
49 |         data: function () {
50 |             return {
51 |                 loading: false,
52 |                 post: {
53 |                     title: null,
54 |                     content: null
55 |                 },
56 |                 saved: false,
57 |                 isNotFound: false,
58 |                 errors: {
59 |                     title: null,
60 |                     content: null
61 |                 },
62 |             }
63 |         },
64 |         mounted() {
65 |             this.axios.get(`/posts/${this.$route.params.id}`).then(res => {
66 |                 this.post = res.data
67 |             }).catch(() => {
68 |                 this.isNotFound = true
69 |             })
70 |         },
71 |         methods: {
72 |             savePost() {
73 |                 this.loading = true
74 |                 this.axios.patch(`/posts/${this.$route.params.id}`, {
75 |                     title: this.post.title,
76 |                     content: this.post.content,
77 |                 }).then(res => {
78 |                     this.post = res.data
79 |                     this.saved = true
80 |                     this.loading = false
81 |                 }).catch(err => {
82 |                     const detail = err.response.data.detail
83 |                     if (Array.isArray(detail)) {
84 |                         detail.map(i => {
85 |                             this.errors[i.loc[1]] = i.msg
86 |                         })
87 |                     } else {
88 |                         this.error = detail
89 |                     }
90 |                     this.loading = false
91 |                 })
92 |             }
93 |         }
94 |     }
95 | </script>
96 | 
97 | <style scoped>
98 | 
99 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/posts/MyPosts.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="col-md-8">
 3 |         <div class="card">
 4 |             <div class="card-body" v-if="loading">
 5 |                 <div class="spinner-grow text-primary" role="status">
 6 |                     <span class="sr-only">Loading...</span>
 7 |                 </div>
 8 |             </div>
 9 |             <div class="card-body" v-else-if="posts.length > 0">
10 |                 <h3 class="card-title">
11 |                     My Posts
12 |                 </h3>
13 |                 <table class="table table-hover">
14 |                     <thead>
15 |                     <tr>
16 |                         <th>#</th>
17 |                         <th>Title</th>
18 |                         <th>Actions</th>
19 |                     </tr>
20 |                     </thead>
21 | 
22 |                     <tbody>
23 |                     <tr :key="post.id" v-for="(post, index) in posts">
24 |                         <th style="width: 10px">{{ index + 1 }}</th>
25 |                         <td>{{ post.title }}</td>
26 |                         <td>
27 |                             <router-link :to="{name:'edit-post',params: {id: post.id}}"
28 |                                          class="btn btn-outline-primary btn-sm mr-2">Edit
29 |                             </router-link>
30 |                             <a @click="deleteItem(post.id)" class="btn btn-outline-danger btn-sm">Delete</a>
31 |                         </td>
32 |                     </tr>
33 |                     </tbody>
34 |                 </table>
35 |             </div>
36 |             <div class="card-body text-center" v-else>
37 |                 <h3>You don't have any post</h3>
38 |                 <router-link :to="{name:'new-post'}" class="btn btn-outline-primary">Create a new one</router-link>
39 |             </div>
40 |         </div>
41 |     </div>
42 | </template>
43 | 
44 | <script>
45 |     export default {
46 |         name: "MyPosts",
47 |         data: function () {
48 |             return {
49 |                 loading: false,
50 |                 posts: []
51 |             }
52 |         },
53 |         mounted() {
54 |             this.loadPosts()
55 |         },
56 |         methods: {
57 |             loadPosts() {
58 |                 this.loading = true
59 |                 this.axios.get('/posts/me').then(response => {
60 |                     this.posts = response.data
61 |                     this.loading = false
62 |                 })
63 |             },
64 |             deleteItem(id) {
65 |                 if (confirm('Are you sure to delete the post?')) {
66 |                     this.axios.delete(`/posts/${id}`).then(() => {
67 |                         this.loadPosts()
68 |                     })
69 |                 }
70 |             }
71 |         }
72 |     }
73 | </script>
74 | 
75 | <style scoped>
76 | 
77 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/posts/NewPost.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="col-md-8">
 3 |         <div class="container">
 4 |             <div class="card">
 5 |                 <div class="card-header">
 6 |                     <h3>New Post</h3>
 7 |                 </div>
 8 |                 <div class="card-body">
 9 |                     <form v-on:submit.prevent="createPost">
10 |                         <div class="form-group">
11 |                             <label>Title:</label>
12 |                             <input :class="{'is-invalid': errors.title}" class="form-control" type="text"
13 |                                    v-model="title"/>
14 |                             <div class="invalid-feedback" v-if="errors.title">{{errors.title}}</div>
15 |                         </div>
16 |                         <div class="form-group">
17 |                             <label>Body of Content:</label>
18 |                             <textarea :class="{'is-invalid': errors.content}" class="form-control" rows="10"
19 |                                       v-model="content"></textarea>
20 |                             <div class="invalid-feedback" v-if="errors.content">{{errors.content}}</div>
21 |                         </div>
22 |                         <div class="form-group">
23 |                             <button class="btn btn-primary" disabled type="button" v-if="loading">
24 |                                 <span aria-hidden="true" class="spinner-grow spinner-grow-sm" role="status"></span>
25 |                                 Save
26 |                             </button>
27 |                             <button class="btn btn-primary" type="submit" v-else>Save</button>
28 |                         </div>
29 |                     </form>
30 |                 </div>
31 |             </div>
32 |         </div>
33 |     </div>
34 | </template>
35 | 
36 | <script>
37 |     export default {
38 |         name: "NewPost",
39 |         data: function () {
40 |             return {
41 |                 loading: false,
42 |                 title: '',
43 |                 content: '',
44 |                 errors: {
45 |                     title: null,
46 |                     content: null
47 |                 },
48 |             }
49 |         },
50 |         methods: {
51 |             createPost() {
52 |                 this.loading = true
53 |                 this.axios.post('/posts', {
54 |                     title: this.title,
55 |                     content: this.content
56 |                 }).then(() => {
57 |                     this.loading = false
58 |                     this.$router.replace({name: 'my-posts'})
59 |                 }).catch(err => {
60 |                     const detail = err.response.data.detail
61 |                     if (Array.isArray(detail)) {
62 |                         detail.map(i => {
63 |                             this.errors[i.loc[1]] = i.msg
64 |                         })
65 |                     } else {
66 |                         this.error = detail
67 |                     }
68 |                     this.loading = false
69 |                 })
70 |             }
71 |         }
72 |     }
73 | </script>
74 | 
75 | <style scoped>
76 | 
77 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/posts/PublicPosts.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="row">
 3 |         <div :key="post.id" class="col-md-4" v-for="post in posts">
 4 |             <div class="card">
 5 |                 <div class="card-body">
 6 |                     <h4 class="card-title">
 7 |                         {{post.title}}
 8 |                     </h4>
 9 |                     <span class="help text-muted" v-if="post.author_name">Author: {{ post.author_name }}</span>
10 |                     <span class="help text-muted" v-else>Author: Unknown</span>
11 |                     <hr/>
12 |                     <p>{{post.content}}</p>
13 |                 </div>
14 |             </div>
15 |         </div>
16 |     </div>
17 | </template>
18 | 
19 | <script>
20 |     export default {
21 |         name: "PublicPosts",
22 |         data: function () {
23 |             return {
24 |                 posts: []
25 |             }
26 |         },
27 |         mounted() {
28 |             this.axios.get('/posts').then(response => {
29 |                 this.posts = response.data
30 |             })
31 |         }
32 |     }
33 | </script>
34 | 
35 | <style scoped>
36 | 
37 | </style>


--------------------------------------------------------------------------------
/frontend/src/components/users/EditUser.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div>
 3 |         Edit User
 4 |     </div>
 5 | </template>
 6 | <script>
 7 | export default {
 8 |     
 9 | }
10 | </script>


--------------------------------------------------------------------------------
/frontend/src/components/users/ListUser.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <div>
 3 |     <h1>User List</h1>
 4 | 
 5 |     <table class="table table-hover">
 6 |       <thead>
 7 |         <tr>
 8 |           <td>ID</td>
 9 |           <td>Full Name</td>
10 |           <td>Email</td>
11 |           <td>Actions</td>
12 |         </tr>
13 |       </thead>
14 | 
15 |       <tbody>
16 |         <tr v-for="user in users" :key="user.id">
17 |           <td>{{ user.id }}</td>
18 |           <td>{{ user.first_name }} {{ user.last_name }}</td>
19 |           <td>{{ user.email }}</td>
20 |           <td>
21 |             <router-link
22 |               :to="{name: 'EditUser', params: { id: user.id }}"
23 |               class="btn btn-primary mr-2"
24 |             >Edit</router-link>
25 | 
26 |             <button class="btn btn-danger" v-on:click="deleteUser(user.id)">Delete</button>
27 |           
28 |           </td>
29 |         </tr>
30 |       </tbody>
31 |     </table>
32 |   </div>
33 | </template>
34 | <script>
35 | export default {
36 |   data() {
37 |     return {
38 |       users: []
39 |     };
40 |   },
41 | 
42 |   created: function(){
43 |       this.fetchUsers();
44 |   },
45 | 
46 |   methods: {
47 |       fetchUsers() {
48 |           let uri = 'http://localhost:8000/api/users'
49 |           this.axios.get(uri).then((response)=>{
50 |               this.users = response.data
51 |           })
52 |       },
53 |       deleteUser(id) {
54 |           let uri = `http://localhost:8000/api/users/${id}`
55 |           let index = this.users.map((x)=>{return x.id}).indexOf(id)
56 |           this.axios.delete(uri).then(
57 |               this.users.splice(index, 1)
58 |           )
59 |       }
60 |   }
61 | };
62 | </script>


--------------------------------------------------------------------------------
/frontend/src/components/users/Register.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |     <div class="col-md-5">
 3 |         <div class="container">
 4 |             <div class="card">
 5 |                 <div class="card-header">
 6 |                     <h3>Register</h3>
 7 |                 </div>
 8 |                 <div class="card-body">
 9 |                     <form v-on:submit.prevent="createUser">
10 |                         <div class="form-group">
11 |                             <label>Full Name:</label>
12 |                             <input :class="{'is-invalid': errors.full_name}" class="form-control" type="text"
13 |                                    v-model="user.full_name"/>
14 |                             <div class="invalid-feedback" v-if="errors.full_name">{{errors.full_name}}</div>
15 |                         </div>
16 |                         <div class="form-group">
17 |                             <label>Email:</label>
18 |                             <input :class="{'is-invalid': errors.email}" class="form-control" type="text"
19 |                                    v-model="user.email"/>
20 |                             <div class="invalid-feedback" v-if="errors.email">{{errors.email}}</div>
21 |                         </div>
22 |                         <div class="form-group">
23 |                             <label>Password:</label>
24 |                             <input :class="{'is-invalid': errors.password}" class="form-control" type="password"
25 |                                    v-model="user.password"/>
26 |                             <div class="invalid-feedback" v-if="errors.password">{{errors.password}}</div>
27 |                         </div>
28 |                         <div class="form-group">
29 |                             <button class="btn btn-primary w-100" disabled type="button" v-if="loading">
30 |                                 <span aria-hidden="true" class="spinner-grow spinner-grow-sm" role="status"></span>
31 |                                 Register
32 |                             </button>
33 |                             <button class="btn btn-primary w-100" type="submit" v-else>Register</button>
34 |                         </div>
35 |                     </form>
36 |                 </div>
37 |             </div>
38 |         </div>
39 |     </div>
40 | </template>
41 | <script>
42 |     export default {
43 |         data() {
44 |             return {
45 |                 loading: false,
46 |                 user: {
47 |                     full_name: '',
48 |                     email: '',
49 |                     password: '',
50 |                 },
51 |                 errors: {
52 |                     full_name: null,
53 |                     email: null,
54 |                     password: null,
55 |                 },
56 |                 error: null
57 |             }
58 |         },
59 |         methods: {
60 |             createUser() {
61 |                 this.loading = true
62 |                 this.axios.post('/users', this.user)
63 |                     .then(() => {
64 |                         this.loading = false
65 |                         this.$router.replace({name: 'login'})
66 |                     })
67 |                     .catch(err => {
68 |                         const detail = err.response.data.detail
69 |                         if (Array.isArray(detail)) {
70 |                             detail.map(i => {
71 |                                 this.errors[i.loc[1]] = i.msg
72 |                             })
73 |                         } else {
74 |                             this.error = detail
75 |                         }
76 | 
77 |                         this.user.password = ''
78 |                         this.loading = false
79 |                     })
80 |             }
81 |         }
82 |     }
83 | </script>


--------------------------------------------------------------------------------
/frontend/src/main.js:
--------------------------------------------------------------------------------
 1 | import Vue from 'vue'
 2 | import VueRouter from 'vue-router'
 3 | import VueAxios from 'vue-axios'
 4 | import axios from 'axios'
 5 | import NProgress from 'nprogress'
 6 | 
 7 | import App from './App.vue'
 8 | import CreateUser from './components/users/Register'
 9 | import EditUser from './components/users/EditUser'
10 | import Login from './components/auth/Login'
11 | import 'bootstrap/dist/css/bootstrap.css'
12 | import MyPosts from "./components/posts/MyPosts";
13 | import PublicPosts from "./components/posts/PublicPosts";
14 | import NewPost from "./components/posts/NewPost";
15 | import EditPost from "./components/posts/EditPost";
16 | // import ListUser from './components/users/ListUser'
17 | 
18 | 
19 | Vue.use(VueRouter)
20 | Vue.use(VueAxios, axios.create({
21 |     baseURL: 'http://localhost:8000/api',
22 |     headers: {
23 |         Authorization: `Bearer ${localStorage.getItem('actoken')}`
24 |     }
25 | }))
26 | 
27 | Vue.config.productionTip = false
28 | 
29 | 
30 | const routes = [
31 |     // {
32 |     //   name: 'user-list',
33 |     //   path: '/users/',
34 |     //   component: ListUser
35 |     // },
36 |     {
37 |         name: 'Home',
38 |         path: '/',
39 |         component: PublicPosts
40 |     },
41 |     {
42 |         name: 'login',
43 |         path: '/login',
44 |         component: Login
45 |     },
46 |     {
47 |         name: 'register',
48 |         path: '/register',
49 |         component: CreateUser
50 |     },
51 |     {
52 |         name: 'user-edit',
53 |         path: '/users/edit',
54 |         component: EditUser
55 |     },
56 |     {
57 |         name: 'new-post',
58 |         path: '/post/new',
59 |         component: NewPost
60 |     },
61 |     {
62 |         name: 'my-posts',
63 |         path: '/post/me',
64 |         component: MyPosts,
65 |     },
66 |     {
67 |         name: 'edit-post',
68 |         path: '/post/:id',
69 |         component: EditPost
70 |     }
71 | ]
72 | 
73 | 
74 | const router = new VueRouter({mode: 'history', routes: routes})
75 | 
76 | router.beforeResolve((to, from, next) => {
77 |     if (to.name) {
78 |         NProgress.start()
79 |     }
80 |     next()
81 | })
82 | 
83 | router.afterEach(() => {
84 |     NProgress.done()
85 | })
86 | 
87 | new Vue({
88 |     render: h => h(App),
89 |     router
90 | }).$mount('#app')


--------------------------------------------------------------------------------
/makefile:
--------------------------------------------------------------------------------
 1 | up:
 2 | 		docker-compose up -d --build
 3 | 
 4 | down:
 5 | 		docker-compose down
 6 | 
 7 | down-all:
 8 | 		docker-compose down -v --remove-orphans
 9 | 
10 | logs:
11 | 		docker-compose logs -f
12 | 
13 | logs-backend:
14 | 		docker-compose logs -f backend
15 | 
16 | test-backend:
17 | 		docker-compose exec backend pytest


--------------------------------------------------------------------------------
/requirements.txt:
--------------------------------------------------------------------------------
 1 | attrs>=19.3.0
 2 | bcrypt>=3.1.7
 3 | certifi>=2019.11.28
 4 | cffi>=1.14.0
 5 | chardet>=3.0.4
 6 | Click>=7.0
 7 | coverage>=5.0.3
 8 | dnspython>=1.16.0
 9 | email-validator>=1.0.5
10 | fastapi>=0.49.0
11 | h11>=0.9.0
12 | httptools>=0.1.1
13 | idna>=2.9
14 | importlib-metadata>=1.5.0
15 | marshmallow>=2.20.5
16 | more-itertools>=8.2.0
17 | motor>=2.1.0
18 | packaging>=20.1
19 | passlib>=1.7.2
20 | pluggy>=0.13.1
21 | py>=1.8.1
22 | pycparser>=2.20
23 | pydantic>=1.4
24 | PyJWT>=1.7.1
25 | pymongo>=3.10.1
26 | pyparsing>=2.4.6
27 | pytest>=5.3.5
28 | python-dateutil>=2.8.1
29 | python-multipart>=0.0.5
30 | requests>=2.23.0
31 | six>=1.14.0
32 | starlette>=0.12.9
33 | tests>=0.7
34 | umongo>=3.0.0
35 | urllib3>=1.25.8
36 | uvicorn>=0.11.7
37 | uvloop>=0.14.0
38 | wcwidth>=0.1.8
39 | websockets>=8.1
40 | zipp>=3.0.0
41 | 


--------------------------------------------------------------------------------
/src/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/__init__.py


--------------------------------------------------------------------------------
/src/api/__init__.py:
--------------------------------------------------------------------------------
 1 | from fastapi import APIRouter
 2 | 
 3 | from .auth_api import router as oauth_router
 4 | from .post_api import router as post_router
 5 | from .user_api import router as user_router
 6 | 
 7 | router = APIRouter()
 8 | 
 9 | router.include_router(prefix="/oauth", router=oauth_router, tags=['OAuth2'])
10 | router.include_router(prefix="/users", router=user_router, tags=['Users'])
11 | router.include_router(prefix="/posts", router=post_router, tags=['Posts'])
12 | 


--------------------------------------------------------------------------------
/src/api/auth_api.py:
--------------------------------------------------------------------------------
 1 | from datetime import timedelta
 2 | 
 3 | import jwt
 4 | from fastapi import APIRouter, Depends, HTTPException
 5 | from fastapi.security import OAuth2PasswordBearer
 6 | from fastapi.security import OAuth2PasswordRequestForm
 7 | from starlette import status
 8 | 
 9 | from src.core.config import ACCESS_TOKEN_EXPIRES, SECRET_KEY, ALGORITHM
10 | from src.models.user import User
11 | from src.serializers.token import Token, TokenData
12 | 
13 | oauth2_scheme = OAuth2PasswordBearer(tokenUrl='/api/oauth/token')
14 | router = APIRouter()
15 | 
16 | 
17 | async def get_current_user(token: str = Depends(oauth2_scheme)) -> User:
18 |     credentials_exception = HTTPException(
19 |         status_code=status.HTTP_401_UNAUTHORIZED,
20 |         detail="Could not validate credentials",
21 |         headers={"WWW-Authenticate": "Bearer"},
22 |     )
23 |     try:
24 |         payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM])
25 |         sub: str = payload.get("sub")
26 |         if sub is None:
27 |             raise credentials_exception
28 |         token_data = TokenData(sub=sub)
29 |     except jwt.PyJWTError:
30 |         raise credentials_exception
31 |     user = await User.get(token_data.sub)
32 |     if user is None:
33 |         raise credentials_exception
34 |     return user
35 | 
36 | 
37 | @router.post('/token', response_model=Token)
38 | async def get_token_api(form_data: OAuth2PasswordRequestForm = Depends()):
39 |     user = await User.get_by_email(form_data.username)
40 |     if not user:
41 |         raise HTTPException(status_code=400, detail="Incorrect username or password")
42 | 
43 |     if not user.check_password(form_data.password):
44 |         raise HTTPException(status_code=400, detail="Incorrect username or password")
45 | 
46 |     access_token = user.create_access_token(expires_delta=timedelta(hours=ACCESS_TOKEN_EXPIRES))
47 |     return {"access_token": access_token, "token_type": "bearer"}
48 | 
49 | 
50 | @router.get('/tokeninfo', status_code=status.HTTP_200_OK)
51 | async def get_token_info_api(token: str = None):
52 |     credentials_exception = HTTPException(
53 |         detail='Token is not valid',
54 |         status_code=status.HTTP_401_UNAUTHORIZED)
55 |     if not token: raise credentials_exception
56 |     try:
57 |         payload = jwt.decode(token.encode(), SECRET_KEY, algorithms=[ALGORITHM])
58 |         sub: str = payload.get("sub")
59 |         if sub is None or not await User.get(sub):
60 |             raise credentials_exception
61 |     except jwt.PyJWTError:
62 |         raise credentials_exception
63 |     return payload
64 | 


--------------------------------------------------------------------------------
/src/api/exceptions.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/api/exceptions.py


--------------------------------------------------------------------------------
/src/api/post_api.py:
--------------------------------------------------------------------------------
  1 | from datetime import datetime
  2 | from typing import List
  3 | 
  4 | from bson.objectid import ObjectId
  5 | from fastapi import APIRouter, HTTPException, Depends
  6 | from starlette import status
  7 | 
  8 | from src.api.auth_api import get_current_user
  9 | from src.models.post import Post, Comment
 10 | from src.models.user import User
 11 | from src.serializers.comment import CommentInSerializer
 12 | from src.serializers.post import PostInSerializer, PostSerializer, PostInPatchSerializer
 13 | 
 14 | router = APIRouter()
 15 | 
 16 | 
 17 | def pagination(skip: int = 0, limit: int = 10):
 18 |     return {
 19 |         'skip': skip,
 20 |         'limit': limit
 21 |     }
 22 | 
 23 | 
 24 | @router.get("", response_model=List[PostSerializer],
 25 |             status_code=status.HTTP_200_OK)
 26 | async def get_posts_api(pagination=Depends(pagination)):
 27 |     cursor = Post.find() \
 28 |         .sort('created_at', -1) \
 29 |         .skip(pagination['skip']) \
 30 |         .limit(pagination['limit'])
 31 | 
 32 |     posts = [post.dump() for post in await cursor.to_list(length=pagination['limit'])]
 33 |     return posts
 34 | 
 35 | 
 36 | @router.get("/me", response_model=List[PostSerializer])
 37 | async def get_my_posts_api(pagination=Depends(pagination), current_user=Depends(get_current_user)):
 38 |     cursor = Post.find({'created_by': current_user.id}) \
 39 |         .sort('created_at', -1) \
 40 |         .skip(pagination['skip']) \
 41 |         .limit(pagination['limit'])
 42 | 
 43 |     posts = [post.dump() for post in await cursor.to_list(length=pagination['limit'])]
 44 |     return posts
 45 | 
 46 | 
 47 | @router.post("", response_model=PostSerializer,
 48 |              status_code=status.HTTP_201_CREATED)
 49 | async def create_post_api(post: PostInSerializer, current_user:User=Depends(get_current_user)):
 50 |     post = Post(
 51 |         title=post.title,
 52 |         created_by=current_user.id,
 53 |         content=post.content,
 54 |         comments=[],
 55 |         author_name=current_user.full_name
 56 |     )
 57 | 
 58 |     await post.commit()
 59 |     post = post.dump()
 60 |     return post
 61 | 
 62 | 
 63 | @router.get("/{post_id}", response_model=PostSerializer,
 64 |             status_code=status.HTTP_201_CREATED)
 65 | async def get_post_detail_api(post_id: str):
 66 |     post = await Post.find_one({"_id": ObjectId(post_id)})
 67 |     if post:
 68 |         return post.dump()
 69 |     else:
 70 |         raise HTTPException(status_code=status.HTTP_404_NOT_FOUND, detail="Post Not Found")
 71 | 
 72 | 
 73 | @router.delete("/{post_id}", status_code=status.HTTP_204_NO_CONTENT)
 74 | async def delete_post_api(post_id: str, current_user=Depends(get_current_user)):
 75 |     post = await Post.get(post_id)
 76 |     if not post:
 77 |         raise HTTPException(status_code=status.HTTP_404_NOT_FOUND, detail="Post Not Found")
 78 | 
 79 |     if post.created_by != current_user:
 80 |         raise HTTPException(status_code=401, detail='Not Enough Permissions')
 81 | 
 82 |     await post.remove()
 83 |     return
 84 | 
 85 | 
 86 | @router.patch("/{post_id}", response_model=PostSerializer, status_code=status.HTTP_200_OK)
 87 | async def update_post_api(post_id: str, post_in: PostInPatchSerializer, current_user=Depends(get_current_user)):
 88 |     post = await Post.get(post_id)
 89 |     if not post:
 90 |         raise HTTPException(status_code=status.HTTP_404_NOT_FOUND, detail="Post Not Found")
 91 | 
 92 |     if post.created_by != current_user:
 93 |         raise HTTPException(status_code=401, detail='Not Enough Permissions')
 94 | 
 95 |     if post_in.title:
 96 |         post.title = post_in.title
 97 |     if post_in.content:
 98 |         post.content = post_in.content
 99 | 
100 |     post.updated_at = datetime.now()
101 |     await post.commit()
102 |     return post.dump()
103 | 
104 | 
105 | @router.post("/{post_id}/add-comment", response_model=PostSerializer,
106 |              status_code=status.HTTP_201_CREATED)
107 | async def add_post_comment_api(post_id: str, comment: CommentInSerializer,
108 |                                current_user: User = Depends(get_current_user)):
109 |     post = await Post.find_one({"_id": ObjectId(post_id)})
110 | 
111 |     if post:
112 |         comment = Comment(created_by=current_user, content=comment.content)
113 |         post.add_comment(comment)
114 |         await post.commit()
115 |         return post.dump()
116 | 
117 |     if not post:
118 |         raise HTTPException(status_code=status.HTTP_404_NOT_FOUND,
119 |                             detail="Post Not Found")
120 | 


--------------------------------------------------------------------------------
/src/api/user_api.py:
--------------------------------------------------------------------------------
 1 | from typing import List
 2 | 
 3 | from bson.objectid import ObjectId
 4 | from fastapi import APIRouter, HTTPException, Depends
 5 | from marshmallow.exceptions import ValidationError
 6 | from starlette import status
 7 | from starlette.responses import JSONResponse
 8 | 
 9 | from src.models.user import User
10 | from src.serializers.user import UserInSerializer, UserSerializer
11 | from .auth_api import get_current_user
12 | 
13 | router = APIRouter()
14 | 
15 | 
16 | @router.get("", response_model=List[UserSerializer],
17 |             status_code=status.HTTP_200_OK)
18 | async def get_users_api(_: User = Depends(get_current_user)):
19 |     cursor = User.find()
20 |     return [user.dump() for user in await cursor.to_list(length=10)]
21 | 
22 | 
23 | @router.post("", response_model=UserSerializer,
24 |              status_code=status.HTTP_201_CREATED)
25 | async def create_user_api(user_in: UserInSerializer):
26 |     user_exists = await User.get_by_email(user_in.email)
27 |     if user_exists:
28 |         raise HTTPException(
29 |             422,
30 |             [{
31 |                 'loc': ["body", 'email'],
32 |                 'msg': f"Email '{user_in.email}' is already registered",
33 |                 'type': 'value_error',
34 |             }]
35 |         )
36 |     try:
37 |         user = await User.register_new_user(email=user_in.email,
38 |                                             full_name=user_in.full_name,
39 |                                             password=user_in.password)
40 |         return user.dump()
41 |     except ValidationError as e:
42 |         return JSONResponse({'field_errors': [e.messages]}, status.HTTP_400_BAD_REQUEST)
43 | 
44 | 
45 | @router.delete("/{user_id}", status_code=status.HTTP_204_NO_CONTENT)
46 | async def delete_user_api(user_id: str, current_user: User = Depends(get_current_user)):
47 |     user = await User.find_one({'_id': ObjectId(user_id)}, {'_id': 1})
48 |     if not user:
49 |         raise HTTPException(detail="User Not Found", status_code=status.HTTP_404_NOT_FOUND)
50 |     await user.remove()
51 | 
52 | 
53 | @router.get('/me', response_model=UserSerializer, status_code=status.HTTP_200_OK)
54 | async def get_user_me_api(current_user: User = Depends(get_current_user)):
55 |     return current_user.dump()
56 | 


--------------------------------------------------------------------------------
/src/core/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/core/__init__.py


--------------------------------------------------------------------------------
/src/core/config.py:
--------------------------------------------------------------------------------
 1 | from passlib.context import CryptContext
 2 | from starlette.config import Config, environ
 3 | from starlette.datastructures import CommaSeparatedStrings
 4 | 
 5 | config = Config(".env")
 6 | 
 7 | BASE_PATH_API = config('BASE_PATH_API')
 8 | 
 9 | SECRET_KEY = config('SECRET_KEY', default='secretkey')
10 | ALGORITHM = "HS256"
11 | PWD_CONTEXT = CryptContext(schemes=["bcrypt"], deprecated="auto")
12 | 
13 | ALLOWED_HOSTS = config('ALLOWED_HOSTS', cast=CommaSeparatedStrings, default=['*'])
14 | 
15 | DEBUG = config('DEBUG', cast=bool, default=False)
16 | 
17 | ACCESS_TOKEN_EXPIRES = config('ACCESS_TOKEN_EXPIRES', default=24 * 7)
18 | MONGODB_NAME = config("MONGODB_NAME")
19 | MONGODB_URI = config("MONGODB_URI")
20 | 
21 | database_name = MONGODB_NAME
22 | if environ.get('TESTING') == 'TRUE':
23 |     database_name = f'test-{database_name}'
24 | 


--------------------------------------------------------------------------------
/src/core/db.py:
--------------------------------------------------------------------------------
 1 | from src.core import config
 2 | from motor.motor_asyncio import AsyncIOMotorClient, AsyncIOMotorDatabase
 3 | from umongo.frameworks import MotorAsyncIOInstance
 4 | 
 5 | 
 6 | class DataBase:
 7 |     client: AsyncIOMotorClient = None
 8 | 
 9 | 
10 | database = DataBase()
11 | 
12 | 
13 | def get_database() -> AsyncIOMotorDatabase:
14 |     if database.client:
15 |         return database.client[config.database_name]
16 |     return AsyncIOMotorClient(config.MONGODB_URI)[config.database_name]
17 | 
18 | 
19 | def get_client() -> AsyncIOMotorClient:
20 |     if not database.client:
21 |         return AsyncIOMotorClient(config.MONGODB_URI)
22 |     return database.client
23 | 
24 | 
25 | db = get_database()
26 | instance = MotorAsyncIOInstance(db)
27 | 


--------------------------------------------------------------------------------
/src/main.py:
--------------------------------------------------------------------------------
 1 | import logging
 2 | 
 3 | from fastapi import FastAPI
 4 | from starlette.middleware.cors import CORSMiddleware
 5 | from motor.motor_asyncio import AsyncIOMotorClient
 6 | 
 7 | from src.api import router
 8 | from src.core import config
 9 | from src.core.db import database
10 | 
11 | app = FastAPI(title="Blog API")
12 | 
13 | origins= [
14 |     'http://localhost:8000',
15 |     'http://localhost:8080',
16 |     'http://127.0.0.1:8000',
17 |     'http://127.0.0.1:8080'
18 | ]
19 | 
20 | app.add_middleware(
21 |     CORSMiddleware,
22 |     allow_origins=origins,
23 |     allow_credentials=True,
24 |     allow_methods=['*'],
25 |     allow_headers=['*'],
26 | )
27 | 
28 | 
29 | @app.on_event("startup")
30 | async def event_startup():
31 |     from src.core.db import database
32 |     logging.info("connect to database....")
33 |     database.client = AsyncIOMotorClient(str(config.MONGODB_URI))
34 |     logging.info("Connected to database!")
35 | 
36 |     logging.info("ensuring model indexes")
37 |     from src.models import ensure_indexes
38 |     await ensure_indexes()
39 | 
40 | 
41 | @app.on_event("shutdown")
42 | async def event_shutdown():
43 |     logging.info("close mongodb connection....")
44 |     database.client.close()
45 |     logging.info("connection to mongodb has been closed!")
46 | 
47 | 
48 | app.include_router(router, prefix=config.BASE_PATH_API)
49 | 


--------------------------------------------------------------------------------
/src/models/__init__.py:
--------------------------------------------------------------------------------
1 | from .post import Post
2 | from .user import User
3 | 
4 | 
5 | async def ensure_indexes():
6 |     await User.ensure_indexes()
7 |     await Post.ensure_indexes()
8 | 


--------------------------------------------------------------------------------
/src/models/post.py:
--------------------------------------------------------------------------------
 1 | from datetime import datetime
 2 | from typing import Optional
 3 | 
 4 | from bson.objectid import ObjectId
 5 | from umongo import Document, fields, EmbeddedDocument
 6 | 
 7 | from src.core.db import instance, db
 8 | from src.models.user import User
 9 | 
10 | 
11 | @instance.register
12 | class Comment(EmbeddedDocument):
13 |     id = fields.ObjectIdField(default=ObjectId())
14 |     content = fields.StrField()
15 | 
16 |     created_by = fields.ReferenceField("User")
17 |     created_at = fields.DateTimeField(default=datetime.now)
18 |     updated_at = fields.DateTimeField(default=datetime.now)
19 | 
20 | 
21 | @instance.register
22 | class Post(Document):
23 |     title = fields.StrField()
24 |     content = fields.StrField()
25 |     comments = fields.ListField(fields.EmbeddedField(Comment))
26 | 
27 |     author_name = fields.StrField(allow_none=True, default='')
28 |     created_by = fields.ReferenceField(User)
29 |     created_at = fields.DateTimeField(default=datetime.now)
30 |     updated_at = fields.DateTimeField(default=datetime.now)
31 | 
32 |     class Meta:
33 |         collection = db.post
34 | 
35 |     @classmethod
36 |     async def get(cls, id: str) -> Optional['Post']:
37 |         if not ObjectId.is_valid(id):
38 |             return None
39 | 
40 |         return await cls.find_one({'_id': ObjectId(id)})
41 | 
42 |     def add_comment(self, comment: Comment):
43 |         self.comments = self.comments + [comment]
44 | 


--------------------------------------------------------------------------------
/src/models/user.py:
--------------------------------------------------------------------------------
 1 | from datetime import datetime, timedelta
 2 | 
 3 | import jwt
 4 | from bson.objectid import ObjectId
 5 | from src.core.config import SECRET_KEY, PWD_CONTEXT, ALGORITHM
 6 | from src.core.db import instance, db
 7 | from umongo import Document, fields
 8 | 
 9 | 
10 | @instance.register
11 | class User(Document):
12 |     id = fields.ObjectIdField()
13 |     full_name = fields.StrField()
14 |     email = fields.EmailField(unique=True)
15 |     hashed_password = fields.StrField()
16 |     last_password_updated_at = fields.DateTimeField()
17 |     scopes = fields.ListField(fields.StrField(), default=[])
18 | 
19 |     created_at = fields.DateTimeField(default=datetime.now)
20 |     updated_at = fields.DateTimeField(default=datetime.now)
21 | 
22 |     class Meta:
23 |         collection_name = 'user'
24 |         collection = db.user
25 | 
26 |     @classmethod
27 |     async def get(cls, id: str):
28 |         if not ObjectId.is_valid(id):
29 |             return None
30 |         user = await cls.find_one({'_id': ObjectId(id)})
31 |         return user
32 | 
33 |     @classmethod
34 |     async def get_by_email(cls, email: str):
35 |         return await cls.find_one({'email': email})
36 | 
37 |     def check_password(self, password: str):
38 |         if self.hashed_password:
39 |             return PWD_CONTEXT.verify(password, self.hashed_password)
40 | 
41 |     def set_password(self, password: str):
42 |         self.hashed_password = PWD_CONTEXT.hash(password)
43 |         self.last_password_updated_at = datetime.now()
44 | 
45 |     def create_access_token(self, expires_delta: timedelta = None):
46 |         now = datetime.utcnow()
47 |         if expires_delta:
48 |             expire = now + expires_delta
49 |         else:
50 |             expire = now + timedelta(minutes=15)
51 |         to_encode = {
52 |             'exp': expire,
53 |             'iat': now,
54 |             'sub': str(self.id),
55 |             'scope': ' '.join(self.scopes) if self.scopes else ''
56 |         }
57 |         encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
58 |         return encoded_jwt
59 | 
60 |     @classmethod
61 |     async def register_new_user(cls, email: str, full_name: str, password: str):
62 |         user = cls(email=email, full_name=full_name)
63 |         user.set_password(password)
64 |         await user.commit()
65 |         return user
66 | 


--------------------------------------------------------------------------------
/src/serializers/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/serializers/__init__.py


--------------------------------------------------------------------------------
/src/serializers/comment.py:
--------------------------------------------------------------------------------
 1 | from datetime import datetime
 2 | 
 3 | from pydantic import BaseModel
 4 | 
 5 | 
 6 | class CommentSerializer(BaseModel):
 7 |     id: str
 8 |     content: str
 9 | 
10 |     created_by: str
11 |     created_at: datetime
12 |     updated_at: datetime
13 | 
14 | 
15 | class CommentInSerializer(BaseModel):
16 |     content: str
17 | 


--------------------------------------------------------------------------------
/src/serializers/post.py:
--------------------------------------------------------------------------------
 1 | from datetime import datetime
 2 | from typing import List, Optional
 3 | 
 4 | from pydantic import BaseModel, validator
 5 | 
 6 | from .comment import CommentSerializer
 7 | 
 8 | 
 9 | class PostSerializer(BaseModel):
10 |     id: str
11 |     title: str
12 |     content: str
13 |     comments: List[CommentSerializer] = []
14 | 
15 |     author_name: Optional[str]
16 |     created_by: str
17 |     created_at: datetime
18 |     updated_at: datetime
19 | 
20 | 
21 | class PostInSerializer(BaseModel):
22 |     title: str
23 |     content: str
24 | 
25 |     @validator('title')
26 |     def validate_title(cls, v):
27 |         if not v:
28 |             raise ValueError('This field is required')
29 |         if len(v) < 5:
30 |             raise ValueError('Minimum length of title is 5 chars')
31 |         return v
32 | 
33 |     @validator('content')
34 |     def validate_content(cls, v):
35 |         if not v:
36 |             raise ValueError('This field is required')
37 |         if len(v) < 20:
38 |             raise ValueError('Minimum length of the body of content is 20 chars')
39 |         return v
40 | 
41 | 
42 | class PostInPatchSerializer(BaseModel):
43 |     title: Optional[str]
44 |     content: Optional[str]
45 | 


--------------------------------------------------------------------------------
/src/serializers/token.py:
--------------------------------------------------------------------------------
 1 | from typing import List
 2 | 
 3 | from pydantic import BaseModel
 4 | 
 5 | 
 6 | class Token(BaseModel):
 7 |     access_token: str
 8 |     token_type: str
 9 | 
10 | 
11 | class TokenData(BaseModel):
12 |     sub: str = None
13 |     scopes: List[str] = []
14 | 


--------------------------------------------------------------------------------
/src/serializers/user.py:
--------------------------------------------------------------------------------
 1 | from datetime import datetime
 2 | from typing import Optional
 3 | 
 4 | from pydantic import BaseModel, EmailStr, validator
 5 | 
 6 | 
 7 | class UserSerializer(BaseModel):
 8 |     id: str
 9 |     full_name: Optional[str]
10 |     email: EmailStr
11 | 
12 |     created_at: datetime
13 |     updated_at: datetime
14 | 
15 |     class Config:
16 |         orm_mode = True
17 | 
18 | 
19 | class UserInSerializer(BaseModel):
20 |     full_name: str
21 |     email: EmailStr
22 |     password: str
23 | 
24 |     @validator('full_name')
25 |     def validate_full_name(cls, v):
26 |         if not v:
27 |             raise ValueError('Full Name is required')
28 |         return v
29 | 
30 |     @validator('password')
31 |     def validate_password(cls, v):
32 |         if not v:
33 |             raise ValueError('Password is required to create a new account')
34 |         if v and len(v) < 8:
35 |             raise ValueError('Password must be more than 8 characters')
36 |         return v
37 | 


--------------------------------------------------------------------------------
/src/tests/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/tests/__init__.py


--------------------------------------------------------------------------------
/src/tests/conftest.py:
--------------------------------------------------------------------------------
 1 | import pytest
 2 | from starlette.config import environ
 3 | from starlette.testclient import TestClient
 4 | from datetime import timedelta
 5 | environ["TESTING"] = "TRUE"
 6 | 
 7 | 
 8 | @pytest.fixture(scope="session")
 9 | def test_user_data():
10 |     return {
11 |         "email": "user1@example.com",
12 |         "full_name": "string test1",
13 |         "password": "string1-min8",
14 |     }
15 | 
16 | 
17 | @pytest.fixture(scope='session')
18 | def event_loop():
19 |     import asyncio
20 |     loop = asyncio.get_event_loop()
21 |     return loop
22 | 
23 | 
24 | @pytest.fixture(scope="session")
25 | def test_user_object_data(event_loop, test_user_data):
26 |     from src.models.user import User
27 |     user = event_loop.run_until_complete(User.get_by_email(test_user_data['email']))
28 |     if not user:
29 |         user = event_loop.run_until_complete(
30 |             User.register_new_user(
31 |                 email=test_user_data['email'],
32 |                 full_name=test_user_data['full_name'],
33 |                 password=test_user_data['password'],
34 |             ))
35 |     return user
36 | 
37 | 
38 | @pytest.fixture(scope="session")
39 | def access_token(test_user_object_data):
40 |     return test_user_object_data.create_access_token(timedelta(hours=1))
41 | 
42 | 
43 | @pytest.fixture(scope="session")
44 | def test_client(event_loop):
45 |     from src.main import app
46 |     from src.core.config import database_name
47 |     with TestClient(app) as test_client:
48 |         yield test_client
49 |         app.dependency_overrides = {}
50 | 
51 |     # Delete database testing after test already finished
52 |     from src.core.db import get_client
53 |     client = get_client()
54 |     client.drop_database(database_name)
55 | 


--------------------------------------------------------------------------------
/src/tests/endpoints/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/dwisulfahnur/blog-fastapi-vuejs/66c05d5bc0e78df98a1e294568a9f0af16a0e704/src/tests/endpoints/__init__.py


--------------------------------------------------------------------------------
/src/tests/endpoints/test_oauth.py:
--------------------------------------------------------------------------------
 1 | from src.core.config import BASE_PATH_API
 2 | 
 3 | 
 4 | def test_obtain_token_api(test_client, test_user_data, test_user_object_data):
 5 |     response = test_client.post(f'{BASE_PATH_API}/oauth/token', data={
 6 |         'grant_type': 'password',
 7 |         'username': test_user_data['email'],
 8 |         'password': test_user_data['password'],
 9 |     })
10 | 
11 |     assert response.status_code == 200
12 |     assert response.json()['access_token']
13 |     assert response.json()['token_type'] == 'bearer'
14 | 
15 | 
16 | def test_obtain_token_info_api(test_client, access_token):
17 |     response = test_client.get(f'{BASE_PATH_API}/oauth/tokeninfo?token={access_token}')
18 |     assert response.status_code == 200
19 | 
20 | 
21 | def test_obtain_token_info_api_failed(test_client):
22 |     response = test_client.get(f'{BASE_PATH_API}/oauth/tokeninfo?token=wrongtoken')
23 |     assert response.status_code == 401
24 |     assert response.json()['detail'] == 'Token is not valid'


--------------------------------------------------------------------------------
/src/tests/endpoints/test_post.py:
--------------------------------------------------------------------------------
 1 | 
 2 | import pytest
 3 | 
 4 | from src.core.config import BASE_PATH_API
 5 | 
 6 | 
 7 | @pytest.fixture(scope='module')
 8 | def test_post_data():
 9 |     return {
10 |         'title': 'Test Post title',
11 |         'content': 'Test content of the post'
12 |     }
13 | 
14 | 
15 | @pytest.fixture(scope='module')
16 | def test_create_post(test_client, test_user_object_data, test_post_data, access_token):
17 |     response = test_client.post(f'{BASE_PATH_API}/posts', json=test_post_data, headers={
18 |         'Authorization': f'Bearer {access_token}'
19 |     })
20 | 
21 |     assert response.status_code == 201
22 |     assert response.json()['title'] == test_post_data['title']
23 |     assert response.json()['content'] == test_post_data['content']
24 | 
25 | def test_create_post_fail(test_client, access_token):
26 |     response = test_client.post(f'{BASE_PATH_API}/posts', headers={
27 |         'Authorization': f'Bearer {access_token}'
28 |     })
29 | 
30 |     assert response.status_code == 422
31 |     assert response.json()
32 | 
33 | def test_create_post_unauthorized(test_client, test_post_data):
34 |     response = test_client.post(f'{BASE_PATH_API}/posts', json=test_post_data, headers={
35 |         'Authorization': f'Bearer nope'
36 |     })
37 | 
38 |     assert response.status_code == 401
39 |     assert response.json()
40 | 
41 | def test_read_post(test_client, test_create_post):
42 |     response = test_client.get(f'{BASE_PATH_API}/posts')
43 | 
44 |     assert response.status_code == 200
45 |     assert response.json()
46 | 


--------------------------------------------------------------------------------
/src/tests/endpoints/test_user.py:
--------------------------------------------------------------------------------
 1 | from src.core.config import BASE_PATH_API
 2 | 
 3 | 
 4 | def test_user_register_api(test_client, test_user_data, test_user_object_data, monkeypatch):
 5 |     from src.models.user import User
 6 |     class UserInDBMock(User):
 7 |         @classmethod
 8 |         async def register_new_user(cls, full_name: str,
 9 |                                     email: str, password: str):
10 |             return test_user_object_data
11 | 
12 |     monkeypatch.setattr('src.models.user.User.register_new_user',
13 |                         UserInDBMock.register_new_user)
14 | 
15 |     response = test_client.post(f'{BASE_PATH_API}/users', json={
16 |         'full_name': test_user_data['full_name'],
17 |         'email': test_user_data['email'],
18 |         'password': test_user_data['password'],
19 |     })
20 | 
21 |     assert response.status_code == 201
22 |     assert response.json()['id']
23 |     assert response.json()['email'] == test_user_data['email']
24 | 
25 | 
26 | def test_read_user_me(test_client, test_user_object_data, access_token):
27 |     response = test_client.get(f'{BASE_PATH_API}/users/me', headers={
28 |         'Authorization': f'Bearer {access_token}'
29 |     })
30 | 
31 |     assert response.status_code == 200
32 |     assert response.json()['id'] == str(test_user_object_data.id)
33 |     assert response.json()['full_name'] == test_user_object_data.full_name
34 |     assert response.json()['email'] == test_user_object_data.email
35 | 


--------------------------------------------------------------------------------