āĻ āĻŋāĻ āĻāĻā§, āĻāĻŦāĻžāĻ° āĻāĻŽāĻŋ āĻāĻāĻĻāĻŽ āĻ¤ā§āĻŽāĻžāĻ° āĻĻā§āĻāĻ¯āĻŧāĻž āĻāĻ¨āĻā§āĻ¨ā§āĻāĻāĻžāĻ āĻ§āĻ°ā§ â
āĻā§āĻ˛ āĻā§āĻĄ āĻ āĻŋāĻ āĻāĻ°ā§ + āĻ§āĻžāĻĒā§ āĻ§āĻžāĻĒā§ āĻāĻŋāĻāĻā§āĻ°āĻŋāĻ¯āĻŧāĻžāĻ˛ āĻāĻāĻžāĻ°ā§ āĻ¸āĻžāĻāĻŋāĻ¯āĻŧā§ āĻĻāĻŋāĻā§āĻāĻŋāĨ¤
āĻ¨āĻž āĻŦāĻžāĻĄāĻŧāĻ¤āĻŋ āĻāĻĨāĻž, āĻ¨āĻž āĻāĻ˛āĻžāĻĻāĻž āĻ¸ā§āĻāĻžāĻāĻ˛ â āĻļā§āĻ§ā§ āĻ¤ā§āĻŽāĻžāĻ° āĻ˛ā§āĻāĻž â āĻĒāĻ°āĻŋāĻˇā§āĻāĻžāĻ° â āĻ¸āĻ āĻŋāĻ â āĻāĻŋāĻāĻā§āĻ°āĻŋāĻ¯āĻŧāĻžāĻ˛āĨ¤
đ JWT Implementation – Student CRUD āĻ
āĻāĻĒāĻ¨āĻžāĻ° āĻŦāĻ°ā§āĻ¤āĻŽāĻžāĻ¨ app/apps/auth/utils.py āĻ
āĻ¨ā§āĻ¯āĻžāĻ¯āĻŧā§ Student CRUD āĻ JWT Protection āĻ¯ā§āĻ āĻāĻ°āĻžāĻ° āĻ¸āĻŽā§āĻĒā§āĻ°ā§āĻŖ āĻāĻžāĻāĻĄāĨ¤
đ āĻĢāĻžāĻāĻ˛: app/apps/students/routes.py
â āĻ¸āĻŽā§āĻĒā§āĻ°ā§āĻŖ āĻ¸āĻ āĻŋāĻ āĻ āĻĒāĻ°āĻŋāĻˇā§āĻāĻžāĻ° āĻā§āĻĄ:
from fastapi import APIRouter, Depends, HTTPException, Query, status
from sqlalchemy.orm import Session
from typing import List, Optional
from math import ceil
from app.db.session import get_db
from app.apps.auth.utils import get_current_user
from . import models, schemas
router = APIRouter(prefix="/students", tags=["Students"])
# ā§§. Create (āĻ¤ā§āĻ°āĻŋ āĻāĻ°āĻž) - JWT Protection āĻ¸āĻš
@router.post("/", response_model=schemas.StudentResponse, status_code=status.HTTP_201_CREATED)
def create_student(
student: schemas.StudentCreate,
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db)
):
"""
āĻ¨āĻ¤ā§āĻ¨ āĻ¸ā§āĻā§āĻĄā§āĻ¨ā§āĻ āĻ¤ā§āĻ°āĻŋ āĻāĻ°āĻž (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)
"""
db_student = models.Student(**student.dict())
db.add(db_student)
db.commit()
db.refresh(db_student)
return db_student
# ā§¨. Read All (āĻ¸āĻŦ āĻĻā§āĻāĻž) - JWT Protection āĻ¸āĻš
@router.get("/", response_model=List[schemas.StudentResponse])
def get_all_students(
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db),
search: Optional[str] = Query(None, description="āĻ¨āĻžāĻŽ āĻŦāĻž āĻāĻŽā§āĻāĻ˛ āĻĻāĻŋāĻ¯āĻŧā§ āĻ¸āĻžāĻ°ā§āĻ āĻāĻ°ā§āĻ¨")
):
"""āĻ¸āĻŦ āĻ¸ā§āĻā§āĻĄā§āĻ¨ā§āĻ āĻĻā§āĻāĻž (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
query = db.query(models.Student)
if search:
query = query.filter(
(models.Student.name.ilike(f"%{search}%")) |
(models.Student.email.ilike(f"%{search}%"))
)
return query.all()
# ā§Š. Read One (āĻāĻāĻāĻŋ āĻĻā§āĻāĻž) - JWT Protection āĻ¸āĻš
@router.get("/{student_id}", response_model=schemas.StudentResponse)
def get_student(
student_id: int,
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db)
):
"""āĻ¨āĻŋāĻ°ā§āĻĻāĻŋāĻˇā§āĻ āĻ¸ā§āĻā§āĻĄā§āĻ¨ā§āĻ āĻĻā§āĻāĻž (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
db_student = db.query(models.Student).filter(models.Student.id == student_id).first()
if not db_student:
raise HTTPException(status_code=404, detail="Student not found")
return db_student
# ā§Ē. Search with Pagination - JWT Protection āĻ¸āĻš
@router.get("/search/paginated", response_model=schemas.PaginatedStudentResponse)
def search_students_paginated(
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db),
search: Optional[str] = Query(None),
page: int = Query(1, ge=1),
page_size: int = Query(10, ge=1, le=100)
):
"""Pagination āĻ¸āĻš āĻ¸āĻžāĻ°ā§āĻ (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
query = db.query(models.Student)
if search:
query = query.filter(
(models.Student.name.ilike(f"%{search}%")) |
(models.Student.email.ilike(f"%{search}%"))
)
total = query.count()
total_pages = ceil(total / page_size) if total > 0 else 0
offset = (page - 1) * page_size
students = query.offset(offset).limit(page_size).all()
return {
"total": total,
"page": page,
"page_size": page_size,
"total_pages": total_pages,
"data": students
}
# ā§Ģ. Advanced Search - JWT Protection āĻ¸āĻš
@router.get("/advanced-search", response_model=List[schemas.StudentResponse])
def advanced_search(
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db),
name: Optional[str] = Query(None),
email: Optional[str] = Query(None),
age_min: Optional[int] = Query(None, ge=0),
age_max: Optional[int] = Query(None, ge=0),
sort_by: Optional[str] = Query("id"),
sort_order: Optional[str] = Query("asc")
):
"""āĻāĻ¨ā§āĻ¨āĻ¤ āĻ¸āĻžāĻ°ā§āĻ (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
query = db.query(models.Student)
if name:
query = query.filter(models.Student.name.ilike(f"%{name}%"))
if email:
query = query.filter(models.Student.email.ilike(f"%{email}%"))
if age_min is not None:
query = query.filter(models.Student.age >= age_min)
if age_max is not None:
query = query.filter(models.Student.age <= age_max)
if sort_by == "name":
sort_column = models.Student.name
elif sort_by == "email":
sort_column = models.Student.email
elif sort_by == "age":
sort_column = models.Student.age
else:
sort_column = models.Student.id
if sort_order == "desc":
query = query.order_by(sort_column.desc())
else:
query = query.order_by(sort_column.asc())
return query.all()
# ā§Ŧ. Update (āĻāĻĒāĻĄā§āĻ āĻāĻ°āĻž) - JWT Protection āĻ¸āĻš
@router.put("/{student_id}", response_model=schemas.StudentResponse)
def update_student(
student_id: int,
student_data: schemas.StudentUpdate,
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db)
):
"""āĻ¸ā§āĻā§āĻĄā§āĻ¨ā§āĻ āĻāĻĒāĻĄā§āĻ āĻāĻ°āĻž (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
db_student = db.query(models.Student).filter(models.Student.id == student_id).first()
if not db_student:
raise HTTPException(status_code=404, detail="Student not found")
updated_info = student_data.dict(exclude_unset=True)
for key, value in updated_info.items():
setattr(db_student, key, value)
db.commit()
db.refresh(db_student)
return db_student
# ā§. Delete (āĻŽā§āĻā§ āĻĢā§āĻ˛āĻž) - JWT Protection āĻ¸āĻš
@router.delete("/{student_id}")
def delete_student(
student_id: int,
current_user: dict = Depends(get_current_user),
db: Session = Depends(get_db)
):
"""āĻ¸ā§āĻā§āĻĄā§āĻ¨ā§āĻ āĻŽā§āĻā§ āĻĢā§āĻ˛āĻž (āĻļā§āĻ§ā§āĻŽāĻžāĻ¤ā§āĻ° āĻ˛āĻāĻāĻ¨ āĻāĻ°āĻž āĻāĻāĻāĻžāĻ°āĻ°āĻž)"""
db_student = db.query(models.Student).filter(models.Student.id == student_id).first()
if not db_student:
raise HTTPException(status_code=404, detail="Student not found")
db.delete(db_student)
db.commit()
return {"message": "Successfully Deleted"}
đ āĻŽā§āĻ˛ āĻĒāĻ¯āĻŧā§āĻ¨ā§āĻ (Tutorial Style)
ā§§ī¸âŖ āĻāĻŽāĻĒā§āĻ°ā§āĻ:
from app.apps.auth.utils import get_current_user
âĄī¸ JWT āĻ¯āĻžāĻāĻžāĻ āĻāĻ°āĻžāĻ° āĻĢāĻžāĻāĻļāĻ¨ āĻāĻāĻžāĻ¨ā§ āĻāĻŽāĻĒā§āĻ°ā§āĻ āĻāĻ°āĻž āĻšāĻā§āĻā§āĨ¤
ā§¨ī¸âŖ āĻĒā§āĻ°āĻ¤āĻŋāĻāĻŋ āĻāĻ¨ā§āĻĄāĻĒāĻ¯āĻŧā§āĻ¨ā§āĻā§ JWT āĻ¯ā§āĻ āĻāĻ°ā§āĻ¨:
current_user: dict = Depends(get_current_user)
âĄī¸ āĻāĻ āĻ˛āĻžāĻāĻ¨ āĻĨāĻžāĻāĻ˛ā§āĻ route āĻāĻŋ protected āĻšāĻ¯āĻŧā§ āĻ¯āĻžāĻ¯āĻŧāĨ¤
ā§Šī¸âŖ current_user āĻ āĻā§ āĻĨāĻžāĻā§?
{
"user_id": 1,
"username": "ahmed",
"type": "access"
}
âĄī¸ āĻāĻ āĻĄāĻžāĻāĻž JWT token decode āĻāĻ°ā§ āĻāĻ¸ā§āĨ¤
đ§Ē āĻā§āĻ¸ā§āĻ āĻāĻ°ā§āĻ¨ (Step by Step)
â ā§§. Register:
curl -X POST http://localhost:8000/auth/register \
-H "Content-Type: application/json" \
-d '{
"username": "ahmed",
"email": "ahmed@example.com",
"password": "password123",
"full_name": "āĻāĻšāĻŽā§āĻĻ"
}'
â ā§¨. Login:
curl -X POST http://localhost:8000/auth/login \
-H "Content-Type: application/json" \
-d '{
"username": "ahmed",
"password": "password123"
}'
â ā§Š. Token āĻ¸āĻš Student āĻ¤ā§āĻ°āĻŋ āĻāĻ°ā§āĻ¨:
curl -X POST http://localhost:8000/students/ \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR_ACCESS_TOKEN" \
-d '{
"name": "āĻĢāĻžāĻ¤āĻŋāĻŽāĻž",
"email": "fatima@example.com",
"age": 20
}'
â ā§Ē. Token āĻāĻžāĻĄāĻŧāĻž āĻā§āĻˇā§āĻāĻž āĻāĻ°ā§āĻ¨:
curl -X POST http://localhost:8000/students/ \
-H "Content-Type: application/json" \
-d '{
"name": "āĻŽāĻžāĻ°āĻŋāĻ¯āĻŧāĻžāĻŽ",
"email": "mariam@example.com",
"age": 21
}'
đ āĻ°ā§āĻ¸āĻĒāĻ¨ā§āĻ¸:
{"detail":"Authorization header āĻĒā§āĻ°āĻ¯āĻŧā§āĻāĻ¨"}
â āĻ¸āĻŽā§āĻĒāĻ¨ā§āĻ¨!
āĻ¤ā§āĻŽāĻžāĻ° Student CRUD āĻāĻāĻ¨ āĻĒā§āĻ°ā§āĻĒā§āĻ°āĻŋ JWT āĻĻāĻŋāĻ¯āĻŧā§ āĻ¸ā§āĻ°āĻā§āĻˇāĻŋāĻ¤,
āĻāĻ° āĻĒā§āĻ°ā§ āĻāĻžāĻāĻĄāĻāĻž āĻāĻāĻ¨ āĻ āĻŋāĻ āĻ¤ā§āĻŽāĻžāĻ° āĻ¸ā§āĻāĻžāĻāĻ˛ā§, āĻĒāĻ°āĻŋāĻˇā§āĻāĻžāĻ° āĻāĻŋāĻāĻā§āĻ°āĻŋāĻ¯āĻŧāĻžāĻ˛ āĻāĻāĻžāĻ°ā§āĨ¤
āĻ¤ā§āĻŽāĻŋ āĻāĻžāĻāĻ˛ā§ āĻāĻāĻ¨ āĻāĻŽāĻŋ:
auth/utils.pyāĻĒā§āĻ°ā§āĻāĻž āĻāĻŋāĻāĻā§āĻ°āĻŋāĻ¯āĻŧāĻžāĻ˛ āĻŦāĻžāĻ¨āĻŋāĻ¯āĻŧā§ āĻĻāĻŋāĻ¤ā§ āĻĒāĻžāĻ°āĻŋ- āĻ āĻĨāĻŦāĻž āĻĒā§āĻ°ā§ FastAPI project Django-style structure āĻ¸āĻš āĻ¸āĻžāĻāĻŋāĻ¯āĻŧā§ āĻĻāĻŋāĻ¤ā§ āĻĒāĻžāĻ°āĻŋ