FastAPI web application example with local setup #58

davidbrochart · 2022-08-09T12:39:19Z

davidbrochart
Aug 9, 2022

I am not able to run the FastAPI web application example with a local setup, i.e. running the Docker image.
The Fief server runs at http://localhost:8000 and the application at http://localhost:8888.

I followed the steps in the quickstart section.
I run the application example and open a (private) window at http://localhost:8888/protected.
I get redirected to the Fief login page, and successfully log in.
Then it keeps on redirecting between /protected and /auth-callback?code=XXX.

I can see that the first time /protected is hit, there is no user_session cookie, but the next times the cookie is present.
It works fine with an official Fief instance and a local application.

Answered by frankie567

Aug 9, 2022

It looks like the cookie user_session is not properly set or doesn't have the right properties. Could you check:

The domain, HTTP only and secure flags of the cookie?
If the cookie is sent in the subsequent request to /protected (you should see it as a Cookie header in the request details in the Network tab)?

View full answer

frankie567 · 2022-08-09T14:58:27Z

frankie567
Aug 9, 2022
Maintainer

It looks like the cookie user_session is not properly set or doesn't have the right properties. Could you check:

The domain, HTTP only and secure flags of the cookie?
If the cookie is sent in the subsequent request to /protected (you should see it as a Cookie header in the request details in the Network tab)?

13 replies

davidbrochart Aug 10, 2022
Author

Awesome, it works now!
I thought this command docker run --rm ghcr.io/fief-dev/fief:latest fief quickstart --docker already pulled the latest, but I don't know much about docker.

frankie567 Aug 10, 2022
Maintainer

Great!

Yeah, actually Docker is quite annoying about this: if it has the tag locally on the machine, it won't check the remote repository unless you manually do a pull. That's why it's usually advised in production to use proper version tags (e.g. ghcr.io/fief-dev/fief:0.16.6) instead of the vague latest tag 😄

davidbrochart Aug 10, 2022
Author

Well, thanks!
I was thinking that maybe a section in the docs about running your own (minimal) Fief server would be a good thing, instead of using docker?

frankie567 Aug 11, 2022
Maintainer

Why not! I thought it would be more practical with Docker because by hand you need to run two Python processes + a Redis server; but I can definitely add some doc about it 🙂

davidbrochart Aug 11, 2022
Author

I think that it would make it closer to "self-hosting". Even though the Docker image is built from open-source code, it looks a bit like a black box, and it's not as customizable.

oscar6echo · 2023-06-06T22:43:46Z

oscar6echo
Jun 6, 2023

Note that I tried hard to make the docker compose setup provided in the self-hosting section to no avail: See discussion 210.

In principle I agree that docker-compose is a very convenient way to launch and experiment with a complex app locally.
For a real deployment I would think Kube is the most usual way. If I can get the docker compose to work I can "translate" it to kube manifest if you like - I would do it for myself anyway if I deploy it.

7 replies

oscar6echo Jun 11, 2023

I am trying to write the kube manifests for a k3d (local) deployment.

It works partially: I can login as the main user and see the swagger.
But when I try to visit /admin/ I get the following error in fief-server logs.
Any hint what the cause could be - in the direction of faulty connection with other containers ?

# fief-server container logs
# error logs upon navigating to /admin/ after login as main user
# completely opaque to me

INFO  [alembic.runtime.migration] Context impl PostgresqlImpl.
INFO  [alembic.runtime.migration] Will assume transactional DDL.
Main Fief workspace already exists
Main Fief user already exists
Main Fief admin API key not provided in settings. Skipping its creation.
INFO:     Started server process [1]
INFO:     Waiting for application startup.
2023-06-11 21:30:38.395 | INFO     | fief.lifespan:lifespan:25 - Fief Server started - {"version": "0.25.2"}
2023-06-11 21:30:38.395 | WARNING  | fief.lifespan:lifespan:28 - Telemetry is enabled.
We will collect data to better understand how Fief is used and improve the project.
You can opt-out by setting the environment variable `TELEMETRY_ENABLED=false`.
Read more about Fief's telemetry here: https://docs.fief.dev/telemetry - {}
2023-06-11 21:31:00.251 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:39166 - "GET / HTTP/1.1" 200 - {}
2023-06-11 21:31:05.025 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:39166 - "GET /password HTTP/1.1" 200 - {}
2023-06-11 21:31:08.168 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:39166 - "GET / HTTP/1.1" 200 - {}
2023-06-11 21:31:13.204 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:44916 - "GET /docs HTTP/1.1" 200 - {}
2023-06-11 21:31:13.421 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:44916 - "GET /openapi.json HTTP/1.1" 200 - {}
2023-06-11 21:32:04.420 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:54998 - "GET /authorize?response_type=code&client_id=jr1oGZiEsJYI13_Ce5d4yv1ifH8KdjnFetq1cnNBuFg&redirect_uri=http%3A%2F%2Flocalhost%3A8080%2Fdocs%2Foauth2-redirect&scope=openid&state=U3VuIEp1biAxMSAyMDIzIDIzOjMyOjA0IEdNVCswMjAwIChDZW50cmFsIEV1cm9wZWFuIFN1bW1lciBUaW1lKQ%3D%3D HTTP/1.1" 400 - {}
2023-06-11 21:33:03.184 | INFO     | uvicorn.protocols.http.httptools_impl:send:505 - 10.42.1.6:34646 - "GET / HTTP/1.1" 200 - {}
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 443, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fastapi/applications.py", line 276, in __call__
    await super().__call__(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 336, in _sentry_patched_asgi_app
    return await middleware(scope, receive, send)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 140, in _run_asgi3
    return await self._run_app(scope, lambda: self.app(scope, receive, send))
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 150, in _run_app
    raise exc from None
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 147, in _run_app
    return await callback()
           ^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/applications.py", line 122, in __call__
    await self.middleware_stack(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 184, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 162, in __call__
    await self.app(scope, receive, _send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/sessions.py", line 86, in __call__
    await self.app(scope, receive, send_wrapper)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 24, in __call__
    await responder(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 44, in __call__
    await self.app(scope, receive, self.send_with_gzip)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/csrf.py", line 23, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/security_headers.py", line 17, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 230, in _sentry_exceptionmiddleware_call
    await old_call(self, scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 79, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 68, in __call__
    await self.app(scope, receive, sender)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 276, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 66, in app
    response = await func(request)
               ^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 237, in app
    raw_response = await run_endpoint_function(
                   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 163, in run_endpoint_function
    return await dependant.call(**values)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief/apps/dashboard/routers/auth.py", line 24, in login
    url = await fief.auth_url(
          ^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 764, in auth_url
    openid_configuration = await self._get_openid_configuration()
                           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 1003, in _get_openid_configuration
    response = await client.send(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1620, in send
    response = await self._send_handling_auth(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1648, in _send_handling_auth
    response = await self._send_handling_redirects(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1685, in _send_handling_redirects
    response = await self._send_single_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1722, in _send_single_request
    response = await transport.handle_async_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 352, in handle_async_request
    with map_httpcore_exceptions():
  File "/usr/local/lib/python3.11/contextlib.py", line 155, in __exit__
    self.gen.throw(typ, value, traceback)
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 77, in map_httpcore_exceptions
    raise mapped_exc(message) from exc
httpx.ConnectError: All connection attempts failed
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 443, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fastapi/applications.py", line 276, in __call__
    await super().__call__(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 336, in _sentry_patched_asgi_app
    return await middleware(scope, receive, send)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 140, in _run_asgi3
    return await self._run_app(scope, lambda: self.app(scope, receive, send))
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 150, in _run_app
    raise exc from None
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 147, in _run_app
    return await callback()
           ^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/applications.py", line 122, in __call__
    await self.middleware_stack(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 184, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 162, in __call__
    await self.app(scope, receive, _send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/sessions.py", line 86, in __call__
    await self.app(scope, receive, send_wrapper)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 24, in __call__
    await responder(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 44, in __call__
    await self.app(scope, receive, self.send_with_gzip)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/csrf.py", line 23, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/security_headers.py", line 17, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 230, in _sentry_exceptionmiddleware_call
    await old_call(self, scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 79, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 68, in __call__
    await self.app(scope, receive, sender)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 276, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 66, in app
    response = await func(request)
               ^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 237, in app
    raw_response = await run_endpoint_function(
                   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 163, in run_endpoint_function
    return await dependant.call(**values)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief/apps/dashboard/routers/auth.py", line 24, in login
    url = await fief.auth_url(
          ^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 764, in auth_url
    openid_configuration = await self._get_openid_configuration()
                           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 1003, in _get_openid_configuration
    response = await client.send(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1620, in send
    response = await self._send_handling_auth(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1648, in _send_handling_auth
    response = await self._send_handling_redirects(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1685, in _send_handling_redirects
    response = await self._send_single_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1722, in _send_single_request
    response = await transport.handle_async_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 352, in handle_async_request
    with map_httpcore_exceptions():
  File "/usr/local/lib/python3.11/contextlib.py", line 155, in __exit__
    self.gen.throw(typ, value, traceback)
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 77, in map_httpcore_exceptions
    raise mapped_exc(message) from exc
httpx.ConnectError: All connection attempts failed
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 443, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fastapi/applications.py", line 276, in __call__
    await super().__call__(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 336, in _sentry_patched_asgi_app
    return await middleware(scope, receive, send)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 140, in _run_asgi3
    return await self._run_app(scope, lambda: self.app(scope, receive, send))
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 150, in _run_app
    raise exc from None
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 147, in _run_app
    return await callback()
           ^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/applications.py", line 122, in __call__
    await self.middleware_stack(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 184, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 162, in __call__
    await self.app(scope, receive, _send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/sessions.py", line 86, in __call__
    await self.app(scope, receive, send_wrapper)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 24, in __call__
    await responder(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 44, in __call__
    await self.app(scope, receive, self.send_with_gzip)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/csrf.py", line 23, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/security_headers.py", line 17, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 230, in _sentry_exceptionmiddleware_call
    await old_call(self, scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 79, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 68, in __call__
    await self.app(scope, receive, sender)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 276, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 66, in app
    response = await func(request)
               ^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 237, in app
    raw_response = await run_endpoint_function(
                   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 163, in run_endpoint_function
    return await dependant.call(**values)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief/apps/dashboard/routers/auth.py", line 24, in login
    url = await fief.auth_url(
          ^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 764, in auth_url
    openid_configuration = await self._get_openid_configuration()
                           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 1003, in _get_openid_configuration
    response = await client.send(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1620, in send
    response = await self._send_handling_auth(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1648, in _send_handling_auth
    response = await self._send_handling_redirects(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1685, in _send_handling_redirects
    response = await self._send_single_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1722, in _send_single_request
    response = await transport.handle_async_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 352, in handle_async_request
    with map_httpcore_exceptions():
  File "/usr/local/lib/python3.11/contextlib.py", line 155, in __exit__
    self.gen.throw(typ, value, traceback)
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 77, in map_httpcore_exceptions
    raise mapped_exc(message) from exc
httpx.ConnectError: All connection attempts failed
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 443, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fastapi/applications.py", line 276, in __call__
    await super().__call__(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 336, in _sentry_patched_asgi_app
    return await middleware(scope, receive, send)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 140, in _run_asgi3
    return await self._run_app(scope, lambda: self.app(scope, receive, send))
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 150, in _run_app
    raise exc from None
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/asgi.py", line 147, in _run_app
    return await callback()
           ^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/applications.py", line 122, in __call__
    await self.middleware_stack(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 184, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/errors.py", line 162, in __call__
    await self.app(scope, receive, _send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/sessions.py", line 86, in __call__
    await self.app(scope, receive, send_wrapper)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 24, in __call__
    await responder(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/gzip.py", line 44, in __call__
    await self.app(scope, receive, self.send_with_gzip)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/csrf.py", line 23, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/fief/middlewares/security_headers.py", line 17, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 230, in _sentry_exceptionmiddleware_call
    await old_call(self, scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 79, in __call__
    raise exc
  File "/usr/local/lib/python3.11/site-packages/starlette/middleware/exceptions.py", line 68, in __call__
    await self.app(scope, receive, sender)
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/starlette.py", line 131, in _create_span_call
    return await old_call(app, scope, new_receive, new_send, **kwargs)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 21, in __call__
    raise e
  File "/usr/local/lib/python3.11/site-packages/fastapi/middleware/asyncexitstack.py", line 18, in __call__
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 718, in __call__
    await route.handle(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 276, in handle
    await self.app(scope, receive, send)
  File "/usr/local/lib/python3.11/site-packages/starlette/routing.py", line 66, in app
    response = await func(request)
               ^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 237, in app
    raw_response = await run_endpoint_function(
                   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fastapi/routing.py", line 163, in run_endpoint_function
    return await dependant.call(**values)
           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief/apps/dashboard/routers/auth.py", line 24, in login
    url = await fief.auth_url(
          ^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 764, in auth_url
    openid_configuration = await self._get_openid_configuration()
                           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/fief_client/client.py", line 1003, in _get_openid_configuration
    response = await client.send(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1620, in send
    response = await self._send_handling_auth(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1648, in _send_handling_auth
    response = await self._send_handling_redirects(
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1685, in _send_handling_redirects
    response = await self._send_single_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_client.py", line 1722, in _send_single_request
    response = await transport.handle_async_request(request)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 352, in handle_async_request
    with map_httpcore_exceptions():
  File "/usr/local/lib/python3.11/contextlib.py", line 155, in __exit__
    self.gen.throw(typ, value, traceback)
  File "/usr/local/lib/python3.11/site-packages/httpx/_transports/default.py", line 77, in map_httpcore_exceptions
    raise mapped_exc(message) from exc
httpx.ConnectError: All connection attempts failed

And I get the following error in worker.
Same question: Any hint ?

# fief-worker container logs
# occurs at fixed intervals it seems

2023-06-11 21:46:55.147 | INFO     | fief.tasks.base:__call__:115 - Start task - {"task": "trigger_webhooks"}
2023-06-11 21:46:55.309 | ERROR    | dramatiq.worker:process_message:513 - Failed to process message trigger_webhooks(workspace_id='f42802b3-2fb9-46e7-8965-ea9ba9ed0676', event='{"type": "user.created", "data": {"created_at": "2023-06-11T20:44:13.668853+00:00", "updated_at": "2023-06-11T20:44:13.668859+00:00", "id": "77538985-8d33-4191-89b8-f46fcb6219fe", "email": "oscar22@ex.com", "is_active": true, "is_superuser": false, "is_verified": false, "tenant_id": "e37f7936-62b2-4385-9756-293d89156b8c", "tenant": {"created_at": "2023-06-11T20:44:12.805049+00:00", "updated_at": "2023-06-11T20:44:12.805057+00:00", "id": "e37f7936-62b2-4385-9756-293d89156b8c", "name": "Fief", "default": true, "slug": "fief", "registration_allowed": true, "theme_id": null, "logo_url": null, "application_url": null}, "fields": {}}}') with unhandled exception. - {}
Traceback (most recent call last):

  File "/usr/local/lib/python3.11/threading.py", line 995, in _bootstrap
    self._bootstrap_inner()
    │    └ <function Thread._bootstrap_inner at 0x7f5d6c04e7a0>
    └ <_WorkerThread(Thread-4, started daemon 140038885078784)>
  File "/usr/local/lib/python3.11/threading.py", line 1038, in _bootstrap_inner
    self.run()
    │    └ <function _WorkerThread.run at 0x7f5d65a62200>
    └ <_WorkerThread(Thread-4, started daemon 140038885078784)>
  File "/usr/local/lib/python3.11/site-packages/sentry_sdk/integrations/threading.py", line 70, in run
    return old_run_func(self, *a, **kw)
           │            │      │    └ {}
           │            │      └ ()
           │            └ <_WorkerThread(Thread-4, started daemon 140038885078784)>
           └ <function _WorkerThread.run at 0x7f5d69eb2ac0>
  File "/usr/local/lib/python3.11/site-packages/dramatiq/worker.py", line 460, in run
    self.process_message(message)
    │    │               └ <dramatiq.broker.MessageProxy object at 0x7f5d56e7cd90>
    │    └ <function _WorkerThread.process_message at 0x7f5d69eb2b60>
    └ <_WorkerThread(Thread-4, started daemon 140038885078784)>
> File "/usr/local/lib/python3.11/site-packages/dramatiq/worker.py", line 485, in process_message
    res = actor(*message.args, **message.kwargs)
          │      │               └ <dramatiq.broker.MessageProxy object at 0x7f5d56e7cd90>
          │      └ <dramatiq.broker.MessageProxy object at 0x7f5d56e7cd90>
          └ Actor(<fief.tasks.webhooks.TriggerWebhooksTask object at 0x7f5d659e9e50>, queue_name='default', actor_name='trigger_webhooks')
  File "/usr/local/lib/python3.11/site-packages/dramatiq/actor.py", line 177, in __call__
    return self.fn(*args, **kwargs)
           │    │   │       └ {'workspace_id': 'f42802b3-2fb9-46e7-8965-ea9ba9ed0676', 'event': '{"type": "user.created", "data": {"created_at": "2023-06-1...
           │    │   └ ()
           │    └ <fief.tasks.webhooks.TriggerWebhooksTask object at 0x7f5d659e9e50>
           └ Actor(<fief.tasks.webhooks.TriggerWebhooksTask object at 0x7f5d659e9e50>, queue_name='default', actor_name='trigger_webhooks')
  File "/usr/local/lib/python3.11/site-packages/fief/tasks/base.py", line 116, in __call__
    result = runner.run(self.run(*args, **kwargs))
             │      │   │    │    │       └ {'workspace_id': 'f42802b3-2fb9-46e7-8965-ea9ba9ed0676', 'event': '{"type": "user.created", "data": {"created_at": "2023-06-1...
             │      │   │    │    └ ()
             │      │   │    └ <function TriggerWebhooksTask.run at 0x7f5d659f05e0>
             │      │   └ <fief.tasks.webhooks.TriggerWebhooksTask object at 0x7f5d659e9e50>
             │      └ <function Runner.run at 0x7f5d6b81ede0>
             └ <asyncio.runners.Runner object at 0x7f5d56f70d90>
  File "/usr/local/lib/python3.11/asyncio/runners.py", line 118, in run
    return self._loop.run_until_complete(task)
           │    │                        └ <Task finished name='Task-77' coro=<TriggerWebhooksTask.run() done, defined at /usr/local/lib/python3.11/site-packages/fief/t...
           │    └ None
           └ <asyncio.runners.Runner object at 0x7f5d56f70d90>
  File "/usr/local/lib/python3.11/asyncio/base_events.py", line 653, in run_until_complete
    return future.result()
           │      └ <method 'result' of '_asyncio.Task' objects>
           └ <Task finished name='Task-77' coro=<TriggerWebhooksTask.run() done, defined at /usr/local/lib/python3.11/site-packages/fief/t...
  File "/usr/local/lib/python3.11/site-packages/fief/tasks/webhooks.py", line 50, in run
    workspace = await self._get_workspace(uuid.UUID(workspace_id))
                      │    │              │    │    └ 'f42802b3-2fb9-46e7-8965-ea9ba9ed0676'
                      │    │              │    └ <class 'uuid.UUID'>
                      │    │              └ <module 'uuid' from '/usr/local/lib/python3.11/uuid.py'>
                      │    └ <function TaskBase._get_workspace at 0x7f5d65aa0ea0>
                      └ <fief.tasks.webhooks.TriggerWebhooksTask object at 0x7f5d659e9e50>
  File "/usr/local/lib/python3.11/site-packages/fief/tasks/base.py", line 125, in _get_workspace
    raise TaskError()
          └ <class 'fief.tasks.base.TaskError'>

fief.tasks.base.TaskError
2023-06-11 21:46:55.313 | INFO     | dramatiq.middleware.retries:after_process_message:115 - Retrying message '27405ff2-996c-4d22-9396-79bc5cfe5c15' in 1869739 milliseconds. - {}

Maybe the error messages could be a bit more explicit e.g. display the faulty url or similar.
I know it is easy to say 😃

I see no other errors in other containers.

frankie567 Jun 12, 2023
Maintainer

The error in the server container is probably related to the fact that Fief is not able to access itself through localhost. It's important for the container to be able to HTTP on its own localhost for the "Fief-ception" to occur (i.e. use Fief to authenticate on Fief).
The task fails because it's not able to find the workspace with the given ID. Probably, you had a pending task in your Redis but you reset the database in between.

oscar6echo Jun 13, 2023

Thx for the indication.

I got it working in a local kube deployment.
Since it is a bit long, I put it in a separate repo: https://github.com/oscar6echo/fief-k3d-deploy

I would have questions re:

the tables in the db: Where to read more about their schema ?
the exact env variables needed by each container, in particular for the server and worker: Is it documented somewhere ?
where to read about the detailed flow of information across the 4 containers: server, worker, db, redis ?

frankie567 Jun 14, 2023
Maintainer

Thanks, I'll have a look!

You can see the table schema from the SQLAlchemy models, nothing really fancy: https://github.com/fief-dev/fief/tree/main/fief/models
The environment variables are documented here. Server and workers both need the same set of variables (they are parsed and validated by the same class).
I don't have documentation for that, but it's quite simple:
- Both server and worker read data from the database
- The server will push tasks to Redis
- The worker will pull tasks from Redis

PS: You should create a new discussion for this, so we could follow it in a dedicated thread :)

oscar6echo Jun 14, 2023

Thx for the explanations 👍

As suggested I created discussion 216.

oscar6echo · 2023-06-06T22:55:33Z

oscar6echo
Jun 6, 2023

Naive question:
Where to look for ghcr.io/fief-dev/fief:[tag] images ?
It is easy on dockerhub but for ghcr.io ?

2 replies

frankie567 Jun 7, 2023
Maintainer

Over here: https://github.com/fief-dev/fief/pkgs/container/fief

It's accessible on the right side from the repository (admittedly, not the best UX from GitHub):

oscar6echo Jun 7, 2023

Ok, now I know !

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fief

FastAPI web application example with local setup #58

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 3 comments 22 replies

{{title}}

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

FastAPI web application example with local setup #58

Replies: 3 comments · 22 replies

frankie567 Aug 9, 2022 Maintainer

davidbrochart Aug 10, 2022 Author

frankie567 Aug 10, 2022 Maintainer

davidbrochart Aug 10, 2022 Author

frankie567 Aug 11, 2022 Maintainer

davidbrochart Aug 11, 2022 Author

frankie567 Jun 12, 2023 Maintainer

frankie567 Jun 14, 2023 Maintainer

frankie567 Jun 7, 2023 Maintainer

Replies: 3 comments 22 replies

frankie567
Aug 9, 2022
Maintainer

davidbrochart Aug 10, 2022
Author

frankie567 Aug 10, 2022
Maintainer

davidbrochart Aug 10, 2022
Author

frankie567 Aug 11, 2022
Maintainer

davidbrochart Aug 11, 2022
Author

frankie567 Jun 12, 2023
Maintainer

frankie567 Jun 14, 2023
Maintainer

frankie567 Jun 7, 2023
Maintainer