Skip to content

kmistry1110/fastapi_auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
docs
docs
 
 
fastapi_async_auth_kit
fastapi_async_auth_kit
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
__init__.py
__init__.py
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

FastAPI Auth 🔐

Production-ready authentication system for FastAPI with async support, JWT, refresh tokens, and pluggable database backends.

🚀 Features

  • ⚡ Fully async (no blocking I/O)

  • 🔐 JWT authentication (access + refresh tokens)

  • 🔁 Refresh token flow

  • 🚪 Logout with token blacklist

  • 🧱 Multi-database support:

    • PostgreSQL (asyncpg)
    • MySQL (aiomysql)
    • SQLite (aiosqlite)
    • MongoDB (motor)

  • 🧠 Dependency-based auth (FastAPI native)

  • 📦 Plug-and-play integration

  • 🛡️ Password hashing with Argon2 (modern standard)

  • 📄 Clean OpenAPI (Swagger) docs with Pydantic schemas

📦 Installation

pip install "fastapi-async-auth-kit[<db>]"

With database support

pip install "fastapi-async-auth-kit[postgres]"
pip install "fastapi-async-auth-kit[mysql]"
pip install "fastapi-async-auth-kit[mongodb]"
pip install "fastapi-async-auth-kit[sqlite]"

⚙️ Quick Start

Step 1: How to initiate auth on startup

from fastapi import FastAPI
from fastapi_async_auth_kit import init_auth, AuthConfig

app = FastAPI()

@app.on_event("startup")
async def startup():
    await init_auth(
        app,
        AuthConfig(
            secret_key="your-secret",
            db_url="postgresql+asyncpg://user:pass@localhost/db",
            db_type="postgres"
        )
    )

Step 2: How to validate token for all your FastAPIs

from fastapi import APIRouter, Depends
from fastapi_async_auth_kit.dependencies.auth import get_current_user
router = APIRouter()

@router.get("/user")
async def me(user=Depends(get_current_user)):
    return user

🔐 Available Endpoints

Endpoint Description
POST /auth/register Register new user
POST /auth/login Login and get tokens
POST /auth/refresh Refresh access token
POST /auth/logout Logout and revoke token
GET /auth/me Get current user

Swagger UI

🧪 Example

Login

POST /auth/login

{
  "username": "john",
  "password": "Strong@123"
}

Response

{
  "access": "jwt_token",
  "refresh": "refresh_token"
}

🧠 Architecture

FastAPI App
   ↓
Auth Service
   ↓
Repository Layer
   ↓
Database (Async)

🛡️ Security

  • Argon2 password hashing
  • JWT token expiration
  • Refresh token blacklist
  • No sensitive data exposure
  • Clean error handling

🧩 Extensibility

  • Add RBAC (roles & permissions)
  • Plug custom user models
  • Add OAuth providers (Google, GitHub)
  • Integrate Redis for token storage

🛠 Tech Stack

  • FastAPI
  • SQLAlchemy (async)
  • Pydantic
  • python-jose (JWT)
  • Argon2 (password hashing)

📌 Roadmap

  • RBAC support
  • Redis token blacklist
  • OAuth integration
  • Rate limiting
  • Email verification

🤝 Contributing

Pull requests are welcome. For major changes, open an issue first.

Source Code: https://github.com/kmistry1110/fastapi_auth

📄 License

MIT License

About

Auth APIs for FastApi App

pypi.org/project/fastapi-async-auth-kit/

Topics

authentication async jwt-authentication access-token refresh-token auth-service fastapi fastapi-auth fastapi-auth2 fastapi-authentication

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages