## Lesson: REST API Authentication with Flask and Database

### This example demonstrates:  
1. Basic authentication with username and password.  
2. Token-based authentication using JWT.  
3. SQLite database integration using SQLAlchemy.  

In [1]:
!pip install flask --break-system-packages
!pip install flask-restx  --break-system-packages
!pip install flask-sqlalchemy --break-system-packages
!pip install mysql-connector-python --break-system-packages
!pip install flask-migrate --break-system-packages
!pip install flask flask-jwt-extended --break-system-packages

Defaulting to user installation because normal site-packages is not writeable
Defaulting to user installation because normal site-packages is not writeable
Defaulting to user installation because normal site-packages is not writeable
Defaulting to user installation because normal site-packages is not writeable
Defaulting to user installation because normal site-packages is not writeable
Defaulting to user installation because normal site-packages is not writeable
Collecting flask-jwt-extended
  Using cached Flask_JWT_Extended-4.7.1-py2.py3-none-any.whl (22 kB)
Collecting PyJWT<3.0,>=2.0
  Using cached PyJWT-2.10.1-py3-none-any.whl (22 kB)
Installing collected packages: PyJWT, flask-jwt-extended
Successfully installed PyJWT-2.10.1 flask-jwt-extended-4.7.1


In [None]:
from flask import Flask, Blueprint, jsonify, request
from flask_jwt_extended import JWTManager, create_access_token, jwt_required, get_jwt_identity
from flask_sqlalchemy import SQLAlchemy
from werkzeug.security import generate_password_hash, check_password_hash
from werkzeug.serving import run_simple

app = Flask(__name__)

# Configurations
app.config['JWT_SECRET_KEY'] = 'your_secret_key'
app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql+mysqlconnector://root:top!secret@localhost:3307/flask_alchemy'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

# Initialize extensions
jwt = JWTManager(app)
db = SQLAlchemy(app)

# User model
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(80), unique=True, nullable=False)
    password = db.Column(db.String(120), nullable=False)

with app.app_context():
    db.create_all()

# Create a Blueprint
auth_bp = Blueprint('auth', __name__, url_prefix='/auth')

@auth_bp.route('/register', methods=['POST'])
def register():
    data = request.json
    username = data.get('username')
    password = data.get('password')

    if User.query.filter_by(username=username).first():
        return jsonify({"msg": "Username already exists"}), 400

    hashed_password = generate_password_hash(password)
    new_user = User(username=username, password=hashed_password)
    db.session.add(new_user)
    db.session.commit()

    return jsonify({"msg": "User registered successfully"}), 201

@auth_bp.route('/login', methods=['POST'])
def login():
    data = request.json
    username = data.get('username')
    password = data.get('password')

    user = User.query.filter_by(username=username).first()
    if not user or not check_password_hash(user.password, password):
        return jsonify({"msg": "Invalid username or password"}), 401

    access_token = create_access_token(identity=username)
    return jsonify(access_token=access_token)

@auth_bp.route('/protected', methods=['GET'])
@jwt_required()
def protected():
    current_user = get_jwt_identity()
    return jsonify({"msg": f"Hello, {current_user}! This is a protected endpoint."})

@auth_bp.route('/public', methods=['GET'])
def public():
    return jsonify({"msg": "This is a public endpoint."})

# Register the Blueprint
app.register_blueprint(auth_bp)
 
run_simple('localhost', 5000, app)


In [None]:
from flask import Flask, jsonify, request
from flask_jwt_extended import JWTManager, create_access_token, jwt_required, get_jwt_identity
from flask_sqlalchemy import SQLAlchemy
from flask_restx import Api, Resource, fields
from werkzeug.security import generate_password_hash, check_password_hash
from werkzeug.serving import run_simple

app = Flask(__name__)

# Configurations
app.config['JWT_SECRET_KEY'] = 'your_secret_key'
app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql+mysqlconnector://root:top!secret@localhost:3307/flask_alchemy'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

# Initialize extensions
jwt = JWTManager(app)
db = SQLAlchemy(app)

# User model
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(80), unique=True, nullable=False)
    password = db.Column(db.String(120), nullable=False)

with app.app_context():
    db.create_all()

# Initialize Flask-RESTx
api = Api(app, version='1.0', title='Auth API', description='A simple authentication API')

# Define a Namespace
auth_ns = api.namespace('auth', description='Authentication operations')

# Define Models for Swagger Documentation
user_model = api.model('User', {
    'username': fields.String(required=True, description='The username'),
    'password': fields.String(required=True, description='The password'),
})

# Routes
@auth_ns.route('/register')
class Register(Resource):
    @auth_ns.expect(user_model)
    def post(self):
        data = request.json
        username = data.get('username')
        password = data.get('password')

        if User.query.filter_by(username=username).first():
            return {"msg": "Username already exists"}, 400

        hashed_password = generate_password_hash(password)
        new_user = User(username=username, password=hashed_password)
        db.session.add(new_user)
        db.session.commit()

        return {"msg": "User registered successfully"}, 201

@auth_ns.route('/login')
class Login(Resource):
    @auth_ns.expect(user_model)
    def post(self):
        data = request.json
        username = data.get('username')
        password = data.get('password')

        user = User.query.filter_by(username=username).first()
        if not user or not check_password_hash(user.password, password):
            return {"msg": "Invalid username or password"}, 401

        access_token = create_access_token(identity=username)
        return {"access_token": access_token}

@auth_ns.route('/protected')
class Protected(Resource):
    @jwt_required()
    def get(self):
        current_user = get_jwt_identity()
        return {"msg": f"Hello, {current_user}! This is a protected endpoint."}

@auth_ns.route('/public')
class Public(Resource):
    def get(self):
        return {"msg": "This is a public endpoint."}

if __name__ == '__main__':
    run_simple('localhost', 5000, app)
