security2 - Code Search

CONTRIBUTING.md

the behavior you are seeing is confirmed as a bug or issue, it can easily be re-raised in the issue tracker.

## Filing issues

Sensitive security-related issues should be reported to [security@golang.org](mailto:******@****.***).
See the [security policy](https://golang.org/security) for details.

The recommended way to file an issue is by running `go bug`.
Otherwise, when filing an issue, make sure to answer these five questions:

Created: Tue Apr 07 11:13:11 GMT 2026

- Last Modified: Wed Mar 29 22:00:27 GMT 2023

- 1.3K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/ja/docs/advanced/security/oauth2-scopes.md

///

{* ../../docs_src/security/tutorial005_an_py310.py hl[157] *}

## path operation と依存関係でスコープを宣言 { #declare-scopes-in-path-operations-and-dependencies }

ここでは、`/users/me/items/` の path operation が `items` スコープを必要とするように宣言します。

そのために、`fastapi` から `Security` をインポートして使います。

`Security` は（`Depends` と同様に）依存関係を宣言できますが、さらにスコープ（文字列）のリストを受け取る `scopes` パラメータも持ちます。

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Fri Mar 20 14:07:17 GMT 2026

- 16.6K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/ru/docs/advanced/security/index.md

# Расширенная безопасность { #advanced-security }

## Дополнительные возможности { #additional-features }

Есть дополнительные возможности для работы с безопасностью помимо тех, что описаны в [Учебник — Руководство пользователя: Безопасность](../../tutorial/security/index.md).

/// tip | Совет

Следующие разделы не обязательно являются «продвинутыми».

И возможно, что решение для вашего варианта использования находится в одном из них.

///

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Mar 19 17:56:20 GMT 2026

- 1.2K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial007_py310.py

import secrets

from fastapi import Depends, FastAPI, HTTPException, status
from fastapi.security import HTTPBasic, HTTPBasicCredentials

app = FastAPI()

security = HTTPBasic()


def get_current_username(credentials: HTTPBasicCredentials = Depends(security)):
    current_username_bytes = credentials.username.encode("utf8")
    correct_username_bytes = b"stanleyjobson"
    is_correct_username = secrets.compare_digest(

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Feb 12 13:19:43 GMT 2026

- 1.1K bytes

- Click Count (0)

github.com/tiangolo/fastapi

tests/test_security_api_key_header_description.py

from fastapi import Depends, FastAPI, Security
from fastapi.security import APIKeyHeader
from fastapi.testclient import TestClient
from inline_snapshot import snapshot
from pydantic import BaseModel

app = FastAPI()

api_key = APIKeyHeader(name="key", description="An API Key Header")


class User(BaseModel):
    username: str


def get_current_user(oauth_header: str = Security(api_key)):
    user = User(username=oauth_header)

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Sun Feb 08 10:18:38 GMT 2026

- 2.2K bytes

- Click Count (0)

github.com/tiangolo/fastapi

tests/test_security_oauth2_authorization_code_bearer_scopes_openapi_simple.py

# Ref: https://github.com/fastapi/fastapi/issues/14454

from typing import Annotated

from fastapi import Depends, FastAPI, Security
from fastapi.security import OAuth2AuthorizationCodeBearer
from fastapi.testclient import TestClient
from inline_snapshot import snapshot

oauth2_scheme = OAuth2AuthorizationCodeBearer(
    authorizationUrl="api/oauth/authorize",
    tokenUrl="/api/oauth/token",
    scopes={"read": "Read access", "write": "Write access"},

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Wed Dec 17 21:25:59 GMT 2025

- 2.6K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/uk/docs/tutorial/security/get-current-user.md

{* ../../docs_src/security/tutorial002_an_py310.py hl[25] *}

## Отримати користувача { #get-the-user }

`get_current_user` використає (фальшиву) утилітну функцію, яку ми створили, що приймає `token` як `str` і повертає нашу Pydantic-модель `User`:

{* ../../docs_src/security/tutorial002_an_py310.py hl[19:22,26:27] *}

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Sat Feb 14 08:43:14 GMT 2026

- 6.7K bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/de/docs/advanced/security/index.md

# Fortgeschrittene Sicherheit { #advanced-security }

## Zusatzfunktionen { #additional-features }

Neben den in [Tutorial – Benutzerhandbuch: Sicherheit](../../tutorial/security/index.md) behandelten Funktionen gibt es noch einige zusätzliche Funktionen zur Handhabung der Sicherheit.

/// tip | Tipp

Die nächsten Abschnitte sind **nicht unbedingt „fortgeschritten“**.

Und es ist möglich, dass für Ihren Anwendungsfall die Lösung in einem davon liegt.

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Mar 19 17:58:09 GMT 2026

- 797 bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs/es/docs/advanced/security/index.md

# Seguridad Avanzada { #advanced-security }

## Funcionalidades Adicionales { #additional-features }

Hay algunas funcionalidades extra para manejar la seguridad aparte de las cubiertas en el [Tutorial - Guía del Usuario: Seguridad](../../tutorial/security/index.md).

/// tip | Consejo

Las siguientes secciones no son necesariamente "avanzadas".

Y es posible que para tu caso de uso, la solución esté en una de ellas.

///

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Mar 19 18:15:55 GMT 2026

- 722 bytes

- Click Count (0)

github.com/tiangolo/fastapi

docs_src/security/tutorial007_an_py310.py

import secrets
from typing import Annotated

from fastapi import Depends, FastAPI, HTTPException, status
from fastapi.security import HTTPBasic, HTTPBasicCredentials

app = FastAPI()

security = HTTPBasic()


def get_current_username(
    credentials: Annotated[HTTPBasicCredentials, Depends(security)],
):
    current_username_bytes = credentials.username.encode("utf8")
    correct_username_bytes = b"stanleyjobson"

Created: Sun Apr 05 07:19:11 GMT 2026

- Last Modified: Thu Feb 12 13:19:43 GMT 2026

- 1.1K bytes

- Click Count (0)

Search Options