[Reference](https://vinaykachare.medium.com/why-you-should-switch-to-fastapi-49eea6a30189)

# Access headers, cookies directly by name


In [1]:
from typing import Optional
from fastapi import FastAPI, Header, Cookie
app = FastAPI()

@app.get("/request_header")
def read_headers(sso_cookie: Optional[str] = Cookie(None, alias='sso'), 
                 sso_token: Optional[str] = Header(None)):
    return {"sso token": sso_token}

# Database Session initialization using DI


In [2]:
from fastapi import Depends, FastAPI
from sqlalchemy import create_engine
from sqlalchemy.ext.declarative import declarative_base
from sqlalchemy.orm import sessionmaker, Session
from model_example import MUser, UserRead

DATABASE_URL = "postgresql://user:password@postgresserver/db"

engine = create_engine(DATABASE_URL)
db_session = sessionmaker(bind=engine)
Base = declarative_base()

# Dependency
def get_db():
    db = db_session()
    try:
        yield db
    finally:
        db.close()

app = FastAPI()

@app.get("/user", response_model=List[UserRead])
def get(db: Session = Depends(get_db)):
    return db.query(MUser).all()

# Basic User Authentication & Authorization


In [3]:
from typing import List, Optional
from fastapi import Depends, HTTPException, Cookie, Header
from starlette.status import HTTP_401_UNAUTHORIZED, HTTP_403_FORBIDDEN
from enum import Enum

authentication_excp = HTTPException(status_code=HTTP_401_UNAUTHORIZED, detail="Not authenticated")
authorization_excp = HTTPException(status_code=HTTP_403_FORBIDDEN, detail="Operation not permitted")


class Roles(Enum):
    APP_ADMIN = 'app-admin'
    APP_USER = 'app-user'

 # function as Depency
def verify_token(sso_cookie: Optional[str] = Cookie(None, alias='sso'), 
                 sso_token: Optional[str] = Header(None)):

    if sso_cookie:
        user_token = sso_cookie   
    elif  sso_token:
        sso_token = sso_token   
    else:
        raise authentication_excp
    
    # token validate logic
    if not istokenvalid():
        raise authentication_excp

    # fetch user role role
    user_roles = get_useroles()
    if len(user_roles) == 0:
        raise authorization_excp
    
    return user_roles

#Class as Dependency
class AuthUser:
    def __init__(self, allowed_roles: List[Roles]): 
        self.allowed_roles = allowed_roles

    def __call__(self, user_role = Depends(verify_token)):
        role_intersection = list(set(self.allowed_roles) & set(user_role))
        if len(role_intersection) == 0:    
            raise authorization_excp
        
        return role_intersection

# Applying dependency to an endpoint/route/app.


In [4]:
from fastapi import APIRouter

user_router = APIRouter()

@user_router.get("/user_endpoint")
def get():
    return {"data": "API is accessible to user only"}

In [5]:
from auth_example import AuthUser, Roles
from fastapi import Depends, FastAPI
from router_example import user_router

admin_auth_scheme = AuthUser([Roles.APP_ADMIN.value])
user_auth_scheme = AuthUser([Roles.APP_USER.value])

app = FastAPI()
# dependcy at route level
app.include_router(user_router, dependencies=[Depends(user_auth_scheme)])

# dependcy at endpoint level
@app.get("/admin_endpoint", dependencies=[Depends(admin_auth_scheme)])
def get():
    return {"data": "API is accessible to only"}

# Handling exception globally


In [6]:
from fastapi import FastAPI, Request
from fastapi.responses import JSONResponse
app = FastAPI()
@app.get("/test_enpoint")
def read_root():
    1/0
@app.exception_handler(Exception)
def global_exception_handler(request: Request, exc: Exception):
    #log your exception here
    # you can also request details by using request object  
    return JSONResponse(content={"message":"Something went wrong"},
    status_code=500)

# Request/Response Model


In [7]:
from sqlalchemy import Column, Text, Integer, Boolean
from sqlalchemy.ext.declarative import declarative_base
from pydantic import BaseModel, Field
Base = declarative_base()


## database model for m_user table
class MUser(Base):
    __tablename__ = 'm_user'
    user_id = Column(Integer, primary_key=True, autoincrement=True)
    full_name = Column(Text)
    is_active = Column(Boolean, nullable=False)

## pydantic model to return response
class UserRead(BaseModel):
    user_id: int = Field(alias='userId')
    full_name: str = Field(alias='userFullName')
    
    class Config:
        orm_mode = True
        allow_population_by_field_name = True

In [8]:
from fastapi import Depends, FastAPI
from sqlalchemy import create_engine
from sqlalchemy.ext.declarative import declarative_base
from sqlalchemy.orm import sessionmaker, Session
from model_example import MUser, UserRead

DATABASE_URL = "postgresql://user:password@postgresserver/db"

engine = create_engine(DATABASE_URL)
db_session = sessionmaker(bind=engine)
Base = declarative_base()

# Dependency
def get_db():
    db = db_session()
    try:
        yield db
    finally:
        db.close()

app = FastAPI()

@app.get("/user", response_model=List[UserRead])
def get(db: Session = Depends(get_db)):
    return db.query(MUser).all()