👥 User Microservice

Django REST Framework asosida yaratilgan User Management mikroservisi

📖 Loyiha haqida

User Microservice - bu mikroservis arxitekturasi uchun mo'ljallangan mustaqil foydalanuvchi boshqaruv tizimi. JWT autentifikatsiya, user profile management va RESTful API bilan to'liq jihozlangan.

✨ Asosiy xususiyatlar

🔐 Authentication

• ✅ JWT Authentication - Secure token-based auth
• ✅ Custom Login - Email-based login
• ✅ Token Refresh - Automatic token renewal
• ✅ Password Security - Hashed passwords

👤 User Management

• ✅ Custom User Model - Email as primary identifier
• ✅ User Registration - Ro'yxatdan o'tish API
• ✅ User Profile - Batafsil profil ma'lumotlari
• ✅ Profile Update - Profil yangilash

🏗️ Architecture

• ✅ Microservice Design - Mustaqil servis
• ✅ RESTful API - To'liq REST API
• ✅ CORS Enabled - Frontend integratsiya
• ✅ Modular Structure - Apps asosida tuzilgan
• ✅ Scalable - Kengaytirilishi oson

📊 Features

• ✅ User Profile Model - Telefon, manzil, tug'ilgan kun
• ✅ Admin Integration - Django admin panel
• ✅ Logging System - Request logging
• ✅ Timezone Support - Toshkent vaqt zonasi

🛠️ Texnologiyalar

Backend:

• Python 3.10+
• Django 5.2.5
• Django REST Framework 3.14
• Simple JWT
• django-cors-headers
• SQLite3 (development)

🚀 O'rnatish

Talablar

Python 3.10+
pip
virtualenv

Qadamlar

1. Clone qiling:

git clone https://github.com/psix-coder/user-microservice.git
cd user-microservice

2. Virtual environment:

python -m venv venv

# Windows
venv\Scripts\activate

# Linux/Mac
source venv/bin/activate

3. Dependencies o'rnating:

pip install django
pip install djangorestframework
pip install djangorestframework-simplejwt
pip install django-cors-headers

Yoki:

pip install -r requirements.txt

4. Database yarating:

# databases papkasini yarating
mkdir -p databases

# Migrations
python manage.py migrate

5. Superuser:

python manage.py createsuperuser

6. Serverni ishga tushiring:

python manage.py runserver

API: http://127.0.0.1:8000/

📁 Loyiha strukturasi

user-microservice/
├── apps/
│   ├── authentication/        # Auth endpoints
│   │   ├── views.py          # Login, refresh views
│   │   └── urls.py           # Auth URLs
│   └── users/                # User management
│       ├── models.py         # User & Profile models
│       ├── serializers.py    # DRF serializers
│       ├── views.py          # User views
│       ├── urls.py           # User URLs
│       └── admin.py          # Admin config
├── config/                   # Project settings
│   ├── settings.py          # Django settings
│   ├── urls.py              # Root URLs
│   └── wsgi.py              # WSGI config
├── databases/               # Database files
│   └── user.db             # SQLite database
├── manage.py
└── README.md

🗄️ Ma'lumotlar bazasi

User Model

- id (AutoField)
- email (EmailField, unique) # USERNAME_FIELD
- username (CharField, unique)
- first_name (CharField)
- last_name (CharField)
- password (CharField, hashed)
- is_active (BooleanField)
- is_staff (BooleanField)
- is_superuser (BooleanField)
- date_joined (DateTimeField)
- last_login (DateTimeField)

UserProfile Model

- id (AutoField)
- user (OneToOneField → User)
- phone (CharField, max_length=12)
- address (TextField)
- date_of_birth (DateField)
- created_at (DateTimeField)
- updated_at (DateTimeField)

🔌 API Endpoints

Authentication

Method	Endpoint	Tavsif	Auth
POST	/api/auth/login/	Tizimga kirish	❌
POST	/api/auth/refresh/	Token yangilash	❌

User Management

Method	Endpoint	Tavsif	Auth
POST	/api/users/register/	Ro'yxatdan o'tish	❌
GET	/api/users/profile/	Profil ko'rish	✅
PUT/PATCH	/api/users/profile/update/	Profil yangilash	✅

💻 API Foydalanish misollari

1. Ro'yxatdan o'tish (Register)

curl -X POST http://127.0.0.1:8000/api/users/register/ \
  -H "Content-Type: application/json" \
  -d '{
    "email": "user@example.com",
    "username": "johndoe",
    "first_name": "John",
    "last_name": "Doe",
    "password": "securepass123",
    "password_confirm": "securepass123"
  }'

Response:

{
  "id": 1,
  "email": "user@example.com",
  "username": "johndoe",
  "first_name": "John",
  "last_name": "Doe"
}

2. Login (Kirish)

curl -X POST http://127.0.0.1:8000/api/auth/login/ \
  -H "Content-Type: application/json" \
  -d '{
    "email": "user@example.com",
    "password": "securepass123"
  }'

Response:

{
  "access": "eyJ0eXAiOiJKV1QiLCJhbGc...",
  "refresh": "eyJ0eXAiOiJKV1QiLCJhbGc...",
  "user": {
    "id": 1,
    "email": "user@example.com",
    "username": "johndoe",
    "first_name": "John",
    "last_name": "Doe"
  }
}

3. Profile olish

curl -X GET http://127.0.0.1:8000/api/users/profile/ \
  -H "Authorization: Bearer YOUR_ACCESS_TOKEN"

4. Profile yangilash

curl -X PATCH http://127.0.0.1:8000/api/users/profile/update/ \
  -H "Authorization: Bearer YOUR_ACCESS_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "phone": "+998901234567",
    "address": "Toshkent, O'zbekiston",
    "date_of_birth": "1990-01-01"
  }'

5. Token yangilash

curl -X POST http://127.0.0.1:8000/api/auth/refresh/ \
  -H "Content-Type: application/json" \
  -d '{
    "refresh": "YOUR_REFRESH_TOKEN"
  }'

⚙️ Sozlamalar

JWT Configuration

SIMPLE_JWT = {
    'ACCESS_TOKEN_LIFETIME': timedelta(minutes=60),  # 1 soat
    'REFRESH_TOKEN_LIFETIME': timedelta(days=7),     # 7 kun
    'ROTATE_REFRESH_TOKENS': True,
}

CORS Settings

CORS_ALLOWED_ORIGINS = [
    "http://localhost:3000",    # Frontend dev
    "http://127.0.0.1:3000",
    "http://localhost:8000",
    "http://127.0.0.1:8000",
]

Database

DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.sqlite3',
        'NAME': BASE_DIR.parent.parent / 'databases' / 'user.db',
    }
}

🏗️ Mikroservis Arxitekturasi

Bu servis mikroservis arxitekturasida ishlatilishi uchun yaratilgan:

┌─────────────────┐
│   API Gateway   │
└────────┬────────┘
         │
    ┌────┴────────────────┬─────────────┐
    │                     │             │
┌───▼──────┐      ┌──────▼────┐  ┌────▼──────┐
│   User   │      │  Product  │  │  Order    │
│ Service  │      │  Service  │  │  Service  │
└──────────┘      └───────────┘  └───────────┘

Xususiyatlar:

• Mustaqil deploy
• Alohida database
• RESTful API communication
• JWT token sharing
• CORS enabled

🔒 Xavfsizlik

• ✅ JWT token authentication
• ✅ Password hashing (PBKDF2)
• ✅ CORS protection
• ✅ CSRF protection
• ✅ SQL injection protection
• ✅ XSS protection

📈 Kelajakdagi rejalar

• OAuth2 integration (Google, Facebook)
• Email verification
• Password reset
• Two-factor authentication (2FA)
• Role-based access control (RBAC)
• PostgreSQL migration
• Redis caching
• Celery async tasks
• Docker containerization
• Kubernetes deployment
• API rate limiting
• Swagger documentation
• Unit tests
• CI/CD pipeline

🧪 Testing

python manage.py test

📝 requirements.txt

Django==5.2.5
djangorestframework==3.14.0
djangorestframework-simplejwt==5.3.0
django-cors-headers==4.3.0

🤝 Hissa qo'shish

1. Fork qiling
2. Branch yarating (git checkout -b feature/Feature)
3. Commit qiling (git commit -m 'Add Feature')
4. Push qiling (git push origin feature/Feature)
5. Pull Request oching

🐛 Issues

GitHub Issues

📄 License

MIT License

👤 Muallif

Psix Coder

• GitHub: @psix-coder

---

⭐ Star qo'yishni unutmang! ⭐

Made with ❤️ and Django by Psix Coder

👥 User Microservice - Scalable Authentication Solution