feat: add base FastAPI project structure with static frontend and API v1

2025-08-18 00:22:50 +02:00
parent ff5026b8f7
commit 49bcb38261
14 changed files with 487 additions and 13 deletions
--- a/app/core/init.py
+++ b/app/core/init.py
@@ -0,0 +1,19 @@
+"""
+Core module for MokPyo application.
+
+- Central access point for configuration and security utilities
+"""
+
+# Expose key components for easy imports
+from .config import settings
+from .security import (
+    hash_password,
+    verify_password,
+    create_access_token,
+    decode_access_token,
+    get_current_user,
+    set_auth_cookie,
+    get_cookie_token,
+)
+
+__version__ = settings.APP_VERSION
--- a/app/core/config.py
+++ b/app/core/config.py
@@ -0,0 +1,75 @@
+from pydantic_settings import BaseSettings
+from datetime import timedelta
+
+class Settings(BaseSettings):
+    # =========================
+    # ENVIRONMENT
+    # =========================
+    ENV: str
+
+    # =========================
+    # DATABASE
+    # =========================
+    DATABASE_URL: str
+
+    # =========================
+    # FASTAPI
+    # =========================
+    DEBUG: bool = True
+    APP_TITLE: str = "MokPyo API"
+    APP_VERSION: str = "1.0.0"
+    APP_DESCRIPTION: str = "MokPyo"
+    APP_DOMAIN: str = "localhost"
+    STATIC_DIR: str = "app/static"
+
+    # =========================
+    # SERVER
+    # =========================
+    HOST: str = "0.0.0.0"
+    PORT: int = 8000
+    UVICORN_WORKERS: int = 4
+
+    # =========================
+    # SECURITY / AUTH
+    # =========================
+    SECRET_KEY: str
+    ACCESS_TOKEN_EXPIRE_MINUTES: int = 30
+    ALGORITHM: str = "HS256"
+
+    # =========================
+    # EMAIL (optionnel)
+    # =========================
+    SMTP_HOST: str = ""
+    SMTP_PORT: int = 587
+    SMTP_USER: str = ""
+    SMTP_PASSWORD: str = ""
+    EMAIL_FROM: str = ""
+
+    # =========================
+    # LOGGING
+    # =========================
+    LOG_LEVEL: str = "INFO"
+    LOG_FILE: str = "logs/app.log"
+
+    # =========================
+    # UPLOADS / FILES
+    # =========================
+    MAX_UPLOAD_SIZE: int = 10_485_760  # 10 MB
+
+    # =========================
+    # ORJSON
+    # =========================
+    ORJSON_STRICT: bool = True
+
+    @property
+    def access_token_expire(self) -> timedelta:
+        return timedelta(minutes=self.ACCESS_TOKEN_EXPIRE_MINUTES)
+
+    class Config:
+        env_file = ".env"
+        env_file_encoding = "utf-8"
+
+# Instance globale
+settings = Settings()
+
+print("test")
--- a/app/core/security.py
+++ b/app/core/security.py
@@ -0,0 +1,76 @@
+from datetime import datetime, timedelta
+from typing import Any, Optional
+
+from passlib.context import CryptContext
+from jose import jwt, JWTError
+
+from fastapi import HTTPException, status, Depends, Request, Response
+from fastapi.security import OAuth2PasswordBearer
+
+from app.core.config import settings
+
+# =========================
+# PASSWORD HASHING
+# =========================
+pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
+
+def hash_password(password: str) -> str:
+    """Hash a password using bcrypt."""
+    return pwd_context.hash(password)
+
+def verify_password(plain_password: str, hashed_password: str) -> bool:
+    """Verify a password against its hash."""
+    return pwd_context.verify(plain_password, hashed_password)
+
+# =========================
+# JWT TOKEN MANAGEMENT
+# =========================
+oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/api/v1/token")
+
+def create_access_token(data: dict, expires_delta: Optional[timedelta] = None) -> str:
+    """Create a JWT access token."""
+    to_encode = data.copy()
+    expire = datetime.utcnow() + (expires_delta or timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES))
+    to_encode.update({"exp": expire})
+    encoded_jwt = jwt.encode(to_encode, settings.SECRET_KEY, algorithm=settings.ALGORITHM)
+    return encoded_jwt
+
+def decode_access_token(token: str) -> dict:
+    """Decode and verify a JWT access token."""
+    try:
+        payload = jwt.decode(token, settings.SECRET_KEY, algorithms=[settings.ALGORITHM])
+        return payload
+    except JWTError:
+        raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid or expired token")
+
+# =========================
+# DEPENDENCIES FASTAPI
+# =========================
+async def get_current_user(token: str = Depends(oauth2_scheme)) -> dict:
+    """Get current user from JWT token."""
+    payload = decode_access_token(token)
+    user_id: Any = payload.get("sub")
+    if user_id is None:
+        raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token payload")
+    return payload
+
+# =========================
+# COOKIE MANAGEMENT (optionnel)
+# =========================
+def set_auth_cookie(response: Response, token: str, max_age: int = 3600):
+    """Set JWT token in HttpOnly cookie."""
+    response.set_cookie(
+        key="access_token",
+        value=f"Bearer {token}",
+        httponly=True,
+        max_age=max_age,
+        samesite="lax",
+        secure=False,  # True si HTTPS
+    )
+
+def get_cookie_token(request: Request) -> Optional[str]:
+    """Get JWT token from cookies."""
+    cookie = request.cookies.get("access_token")
+    if cookie and cookie.startswith("Bearer "):
+        return cookie[7:]
+    return None