scope3 - Code Search

tests/test_security_scopes_dont_propagate.py

from fastapi.testclient import TestClient


async def security1(scopes: SecurityScopes):
    return scopes.scopes


async def security2(scopes: SecurityScopes):
    return scopes.scopes


async def dep3(
    dep1: Annotated[list[str], Security(security1, scopes=["scope1"])],
    dep2: Annotated[list[str], Security(security2, scopes=["scope2"])],
):
    return {"dep1": dep1, "dep2": dep2}


app = FastAPI()

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Wed Dec 17 21:25:59 GMT 2025

- 973 bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/de/docs/advanced/security/oauth2-scopes.md

## Abhängigkeitsbaum und Scopes { #dependency-tree-and-scopes }

Sehen wir uns diesen Abhängigkeitsbaum und die Scopes noch einmal an.

Da die Abhängigkeit `get_current_active_user` von `get_current_user` abhängt, wird der bei `get_current_active_user` deklarierte Scope `"me"` in die Liste der erforderlichen Scopes in `security_scopes.scopes` aufgenommen, das an `get_current_user` übergeben wird.

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Sat Sep 20 15:10:09 GMT 2025

- 15.7K bytes

- Click Count (0)

github.com/apache/maven

api/maven-api-di/src/main/java/org/apache/maven/api/di/Scope.java

import static java.lang.annotation.RetentionPolicy.RUNTIME;

/**
 * Meta-annotation that marks other annotations as scope annotations.
 * <p>
 * Scopes define the lifecycle and visibility of objects in the dependency injection
 * system. Custom scope annotations should be annotated with {@code @Scope}.
 * <p>
 * Built-in scopes include:
 * <ul>
 *   <li>{@link Singleton} - One instance per container</li>

Created: Sun Dec 28 03:35:09 GMT 2025

- Last Modified: Thu Jan 30 23:28:59 GMT 2025

- 1.7K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/en/docs/advanced/security/oauth2-scopes.md

Nevertheless, you still enforce those scopes, or any other security/authorization requirement, however you need, in your code.

In many cases, OAuth2 with scopes can be an overkill.

But if you know you need it, or you are curious, keep reading.

///

## OAuth2 scopes and OpenAPI { #oauth2-scopes-and-openapi }

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Sun Aug 31 10:49:48 GMT 2025

- 13.5K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/ru/docs/advanced/security/oauth2-scopes.md

Для этого используем `security_scopes.scopes`, содержащий `list` со всеми этими scopes как `str`.

{* ../../docs_src/security/tutorial005_an_py310.py hl[130:136] *}

## Дерево зависимостей и scopes { #dependency-tree-and-scopes }

Ещё раз рассмотрим дерево зависимостей и scopes.

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Tue Sep 30 11:37:11 GMT 2025

- 20.7K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/es/docs/advanced/security/oauth2-scopes.md

## Token JWT con scopes { #jwt-token-with-scopes }

Ahora, modifica la *path operation* del token para devolver los scopes solicitados.

Todavía estamos usando el mismo `OAuth2PasswordRequestForm`. Incluye una propiedad `scopes` con una `list` de `str`, con cada scope que recibió en el request.

Y devolvemos los scopes como parte del token JWT.

/// danger | Peligro

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Wed Dec 17 10:15:01 GMT 2025

- 14.2K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/zh/docs/advanced/security/oauth2-scopes.md

                        * `security_scopes` 参数的属性 `scopes` 是包含上述声明的所有作用域的**列表**，因此：
                            * `security_scopes.scopes` 包含用于*路径操作*的 `["me", "items"]`
                            * `security_scopes.scopes` 包含*路径操作* `read_users_me` 的 `["me"]`，因为它在依赖项里被声明
                            * `security_scopes.scopes` 包含用于*路径操作* `read_system_status` 的 `[]`（空列表），并且它的依赖项 `get_current_user` 也没有声明任何 `scope`

/// tip | 提示

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Sun Dec 29 20:41:04 GMT 2024

- 11.6K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/pt/docs/advanced/security/oauth2-scopes.md

/// tip | Dica

A coisa importante e "mágica" aqui é que `get_current_user` terá diferentes listas de `scopes` para validar para cada *operação de rota*.

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Wed Nov 12 16:23:57 GMT 2025

- 14.9K bytes

- Click Count (0)

github.com/apache/maven

compat/maven-model-builder/src/test/resources/poms/validation/bad-dependency-scope.xml

      <version>0.2</version>
      <scope>compile</scope>
    </dependency>
    <dependency>
      <groupId>test</groupId>
      <artifactId>c</artifactId>
      <version>0.2</version>
      <scope>runtime</scope>
    </dependency>
    <dependency>
      <groupId>test</groupId>
      <artifactId>d</artifactId>
      <version>0.2</version>
      <scope>test</scope>
    </dependency>
    <dependency>

Created: Sun Dec 28 03:35:09 GMT 2025

- Last Modified: Fri Oct 25 12:31:46 GMT 2024

- 2K bytes

- Click Count (0)

github.com/apache/maven

compat/maven-model-builder/src/test/resources/poms/validation/bad-plugin-dependency-scope.xml

            <scope>test</scope>
          </dependency>
          <dependency>
            <groupId>test</groupId>
            <artifactId>e</artifactId>
            <version>0.2</version>
            <scope>provided</scope>
          </dependency>
          <dependency>
            <groupId>test</groupId>
            <artifactId>f</artifactId>
            <version>0.2</version>
            <scope>import</scope>

Created: Sun Dec 28 03:35:09 GMT 2025

- Last Modified: Fri Oct 25 12:31:46 GMT 2024

- 2.2K bytes

- Click Count (0)

Search Options