learner - Code Search

tests/test_tutorial/test_security/test_tutorial003_an_py310.py

    assert response.json() == {"detail": "Not authenticated"}
    assert response.headers["WWW-Authenticate"] == "Bearer"


@needs_py310
def test_token(client: TestClient):
    response = client.get("/users/me", headers={"Authorization": "Bearer johndoe"})
    assert response.status_code == 200, response.text
    assert response.json() == {
        "username": "johndoe",

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jul 07 17:12:13 GMT 2023

- 8.4K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_tutorial/test_security/test_tutorial003_py310.py

    assert response.json() == {"detail": "Not authenticated"}
    assert response.headers["WWW-Authenticate"] == "Bearer"


@needs_py310
def test_token(client: TestClient):
    response = client.get("/users/me", headers={"Authorization": "Bearer johndoe"})
    assert response.status_code == 200, response.text
    assert response.json() == {
        "username": "johndoe",

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jul 07 17:12:13 GMT 2023

- 8.4K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_webhooks_security.py

from pydantic import BaseModel
from typing_extensions import Annotated

app = FastAPI()

bearer_scheme = HTTPBearer()


class Subscription(BaseModel):
    username: str
    monthly_fee: float
    start_date: datetime


@app.webhooks.post("new-subscription")
def new_subscription(
    body: Subscription, token: Annotated[str, Security(bearer_scheme)]
):
    """

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Oct 20 09:00:44 GMT 2023

- 4.6K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_tutorial/test_security/test_tutorial001_an.py

    assert response.status_code == 401, response.text
    assert response.json() == {"detail": "Not authenticated"}
    assert response.headers["WWW-Authenticate"] == "Bearer"


def test_token():
    response = client.get("/items", headers={"Authorization": "Bearer testtoken"})
    assert response.status_code == 200, response.text
    assert response.json() == {"token": "testtoken"}


def test_incorrect_token():

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jun 30 18:25:16 GMT 2023

- 1.9K bytes

- Viewed (0)

github.com/tiangolo/fastapi

docs/zh/docs/tutorial/security/first-steps.md

    - 为指定的端点（Endpoint）进行身份验证
    - 因此，用 API 验证身份时，要发送值为 `Bearer` + 令牌的请求头 `Authorization`
    - 假如令牌为 `foobar`，`Authorization` 请求头就是： `Bearer foobar`

## **FastAPI** 的 `OAuth2PasswordBearer`

**FastAPI** 提供了不同抽象级别的安全工具。

本例使用 **OAuth2** 的 **Password** 流以及 **Bearer** 令牌（`Token`）。为此要使用 `OAuth2PasswordBearer` 类。

!!! info "说明"

    `Bearer` 令牌不是唯一的选择。

    但它是最适合这个用例的方案。

Plain Text

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Wed Mar 13 19:02:19 GMT 2024

- 7.4K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_security_openid_connect.py

    return current_user


client = TestClient(app)


def test_security_oauth2():
    response = client.get("/users/me", headers={"Authorization": "Bearer footokenbar"})
    assert response.status_code == 200, response.text
    assert response.json() == {"username": "Bearer footokenbar"}


def test_security_oauth2_password_other_header():
    response = client.get("/users/me", headers={"Authorization": "Other footokenbar"})

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jun 30 18:25:16 GMT 2023

- 2.2K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_security_openid_connect_description.py

    return current_user


client = TestClient(app)


def test_security_oauth2():
    response = client.get("/users/me", headers={"Authorization": "Bearer footokenbar"})
    assert response.status_code == 200, response.text
    assert response.json() == {"username": "Bearer footokenbar"}


def test_security_oauth2_password_other_header():
    response = client.get("/users/me", headers={"Authorization": "Other footokenbar"})

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jun 30 18:25:16 GMT 2023

- 2.4K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_tutorial/test_security/test_tutorial001.py

    assert response.status_code == 401, response.text
    assert response.json() == {"detail": "Not authenticated"}
    assert response.headers["WWW-Authenticate"] == "Bearer"


def test_token():
    response = client.get("/items", headers={"Authorization": "Bearer testtoken"})
    assert response.status_code == 200, response.text
    assert response.json() == {"token": "testtoken"}


def test_incorrect_token():

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jun 30 18:25:16 GMT 2023

- 1.9K bytes

- Viewed (0)

github.com/tiangolo/fastapi

tests/test_tutorial/test_security/test_tutorial001_an_py39.py

    assert response.status_code == 401, response.text
    assert response.json() == {"detail": "Not authenticated"}
    assert response.headers["WWW-Authenticate"] == "Bearer"


@needs_py39
def test_token(client: TestClient):
    response = client.get("/items", headers={"Authorization": "Bearer testtoken"})
    assert response.status_code == 200, response.text
    assert response.json() == {"token": "testtoken"}


@needs_py39

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Fri Jun 30 18:25:16 GMT 2023

- 2.1K bytes

- Viewed (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial003_an.py

    if not user:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail="Invalid authentication credentials",
            headers={"WWW-Authenticate": "Bearer"},
        )
    return user


async def get_current_active_user(
    current_user: Annotated[User, Depends(get_current_user)],
):
    if current_user.disabled:

Python

- Registered: Sun Apr 21 07:19:11 GMT 2024

- Last Modified: Tue Mar 26 16:56:53 GMT 2024

- 2.5K bytes

- Viewed (0)

Search Options