In [1]:
from passlib.context import CryptContext

# Initialize CryptContext with bcrypt scheme
pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")

# Example password
password = "secret"

# Hash the password
hashed_password = pwd_context.hash(password)

# Verify the password
is_valid = pwd_context.verify(password, hashed_password)

print(f"Hashed password: {hashed_password}")
print(f"Password is valid: {is_valid}")

Hashed password: $2b$12$aAiVBQPAPb6Vx86veokFt.iWwxxPPpvsZJEDhGzjLGySYgR3ck5Jq
Password is valid: True


In [10]:
import requests

# Define the base URL of the FastAPI application
base_url = "http://127.0.0.1:8000"


# Step 1: Get the access token
def get_access_token(username, password):
    token_url = f"{base_url}/token"
    response = requests.post(token_url, data={"username": username, "password": password})
    response.raise_for_status()  # Raise an exception for HTTP errors
    return response.json()["access_token"]


# Step 2: Use the access token to access protected endpoints
def get_protected_data(access_token, endpoint):
    headers = {"Authorization": f"Bearer {access_token}"}
    response = requests.get(f"{base_url}{endpoint}", headers=headers)
    response.raise_for_status()  # Raise an exception for HTTP errors
    return response.json()


# Main function to demonstrate the usage

username = "johndoe"
password = "secret"

# Get access token
try:
    access_token = get_access_token(username, password)
    print(f"Access token: {access_token}")
except requests.exceptions.HTTPError as e:
    print(f"Error getting access token: {e}")

# Access protected endpoint /users/me
try:
    user_info = get_protected_data(access_token, "/users/me")
    print(f"User info: {user_info}")
except requests.exceptions.HTTPError as e:
    print(f"Error accessing /users/me: {e}")

# Access protected endpoint /users/me/items
try:
    user_items = get_protected_data(access_token, "/users/me/items")
    print(f"User items: {user_items}")
except requests.exceptions.HTTPError as e:
    print(f"Error accessing /users/me/items: {e}")

Access token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJqb2huZG9lIiwiZXhwIjoxNzIxMzM2NjY1fQ.PQY4HHTkRqtKjAY_sP5IJ4Qfi7kou5Oy44hw25_yefg
User info: {'username': 'johndoe', 'email': 'johndoe@example.com', 'full_name': 'John Doe', 'disabled': False}
User items: [{'item_id': 1, 'owner': 'johndoe', 'description': 'Item 1 description'}, {'item_id': 2, 'owner': 'johndoe', 'description': 'Item 2 description'}]


In [15]:
access_token = get_access_token(username, password)
access_token2 = get_access_token(username, password)

In [18]:
access_token, access_token2

('eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJqb2huZG9lIiwiZXhwIjoxNzIxMzM3OTk2fQ.jR2MAO0x7CBO6tACCeEk4RT1Zloa3ktAQPAs78FwvNo',
 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJqb2huZG9lIiwiZXhwIjoxNzIxMzM3OTk2fQ.jR2MAO0x7CBO6tACCeEk4RT1Zloa3ktAQPAs78FwvNo')

In [17]:
user_items = get_protected_data(access_token2, "/users/me/items")
user_items

[{'item_id': 1, 'owner': 'johndoe', 'description': 'Item 1 description'},
 {'item_id': 2, 'owner': 'johndoe', 'description': 'Item 2 description'}]