---

# 👤 Case Study — User Registration Validation

### 🎯 Intent

Create a **robust signup flow** that strictly validates inputs, returns **clear errors**, and outputs a **safe API-ready payload**.

---

### 🧩 Core Components

1. **📝 Input Schema**

   * `name: str` (min length)
   * `email: EmailStr`
   * `password: SecretStr`, `confirm_password: SecretStr`
   * `age: int | None`
   * `terms_accepted: bool`

2. **🔐 Password Policy**

   * Field validator: length, mixed case, digits/symbols.
   * Model validator: `password == confirm_password`.

3. **📧 Email Checks**

   * `EmailStr` for format.
   * Optional allow/deny domain list via field validator.

4. **🧱 Strong Constraints (Annotated)**

   * `age` with `ge=13, le=120`.
   * `name` with `min_length` / `max_length`.

5. **⚙️ Model Config**

   * `extra="forbid"` to reject unknown fields.
   * `strict=True` to prevent coercion (optional).

6. **🛡️ Secrets & Redaction**

   * Store as `SecretStr`.
   * Field serializers to mask on output/logs (`"****"`).

7. **📤 Safe Output DTO**

   * `UserPublic`: `id`, `name`, `email`, `created_at` (no passwords).
   * Always return public DTO from APIs.

8. **🧪 Error Handling**

   * Catch `ValidationError`.
   * Return `.errors()` with `loc`, `msg`, `type` for form mapping.

9. **🧰 Bulk Imports**

   * `TypeAdapter(list[UserSignup])` for CSV/ETL; collect per-row errors.

10. **🔗 FastAPI Fit (brief)**

* `POST /signup` → validate → hash password → persist → return `UserPublic`.
* Invalid input → FastAPI 422 with structured errors.

11. **🧭 Enhancements**

* Username regex, phone pattern, optional referral code.
* Rate-limit + captcha/honeypot.
* Email verification via BackgroundTasks (send OTP/link).

---
