61 lines
2.6 KiB
Python
61 lines
2.6 KiB
Python
from typing import List
|
|
from fastapi import APIRouter, Depends, HTTPException
|
|
from sqlalchemy.orm import Session
|
|
|
|
from app.core.security import get_current_user
|
|
from app.db.session import get_db
|
|
from app.models import User
|
|
from app.schemas.user import UserCreate, UserRead, UserUpdate
|
|
|
|
router = APIRouter(
|
|
prefix="/users",
|
|
tags=["users"],
|
|
|
|
@router.post("/", response_model=UserRead)
|
|
def create_user(user: UserCreate, db: Session = Depends(get_db)):
|
|
db_user = User(**user.dict())
|
|
db.add(db_user)
|
|
db.commit()
|
|
db.refresh(db_user)
|
|
return db_user
|
|
|
|
@router.get("/", response_model=List[UserRead])
|
|
def read_users(db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
|
|
users = db.query(User).all()
|
|
return users
|
|
|
|
@router.get("/{user_id}", response_model=UserRead)
|
|
def read_user(user_id: int, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
|
|
db_user = db.query(User).filter(User.id == user_id).first()
|
|
if not db_user:
|
|
raise HTTPException(status_code=404, detail="User not found")
|
|
return db_user
|
|
|
|
@router.put("/{user_id}", response_model=UserRead)
|
|
def update_user(user_id: int, user: UserUpdate, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
|
|
db_user = db.query(User).filter(User.id == user_id).first()
|
|
if not db_user:
|
|
raise HTTPException(status_code=404, detail="User not found")
|
|
user_data = user.dict(exclude_unset=True)
|
|
for key, value in user_data.items():
|
|
setattr(db_user, key, value)
|
|
db.add(db_user)
|
|
db.commit()
|
|
db.refresh(db_user)
|
|
return db_user
|
|
|
|
@router.delete("/{user_id}", response_model=UserRead)
|
|
def delete_user(user_id: int, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
|
|
db_user = db.query(User).filter(User.id == user_id).first()
|
|
if not db_user:
|
|
raise HTTPException(status_code=404, detail="User not found")
|
|
db.delete(db_user)
|
|
db.commit()
|
|
return db_user
|
|
|
|
This file defines the following endpoints:
|
|
|
|
|
|
The endpoints use SQLAlchemy models and Pydantic schemas for data validation and serialization. The `get_current_user` dependency is used to ensure that only authenticated users can access certain endpoints (e.g., read all users, read a single user, update a user, and delete a user).
|
|
|
|
Note that you'll need to define the `User`, `UserCreate`, `UserRead`, and `UserUpdate` models and schemas in separate files (e.g., `app/models.py` and `app/schemas/user.py`). Additionally, you'll need to implement the `get_current_user` function in `app/core/security.py` to handle user authentication and authorization. |