6.7 KiB
Dependency callables
FastAPI Users provides a dependency callable to easily inject authenticated user in your routes. They are available from your FastAPIUsers instance.
!!! tip For more information about how to make an authenticated request to your API, check the documentation of your Authentication method.
current_user
Return a dependency callable to retrieve currently authenticated user, passing the following parameters:
optional: IfTrue,Noneis returned if there is no authenticated user or if it doesn't pass the other requirements. Otherwise, throw401 Unauthorized. Defaults toFalse.active: IfTrue, throw401 Unauthorizedif the authenticated user is inactive. Defaults toFalse.verified: IfTrue, throw401 Unauthorizedif the authenticated user is not verified. Defaults toFalse.superuser: IfTrue, throw403 Forbiddenif the authenticated user is not a superuser. Defaults toFalse.
Examples
Get the current user (**active or not **)
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.current_user())):
return f"Hello, {user.email}"
Get the current active user
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.current_user(active=True))):
return f"Hello, {user.email}"
Get the current active and verified user
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.current_user(active=True, verified=True))):
return f"Hello, {user.email}"
Get the current active superuser
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.current_user(active=True, superuser=True))):
return f"Hello, {user.email}"
Reuse it
If you use it often, you can of course set it in a variable and reuse it at will:
current_active_user = fastapi_users.current_user(active=True)
@app.get("/protected-route")
def protected_route(user: User = Depends(current_active_user)):
return f"Hello, {user.email}"
Deprecated
!!! warning Those ones are still provided for backward compatibility but are deprecated and will be removed in a future release.
get_current_user
Get the current user (active or not). Will throw a 401 Unauthorized if missing or wrong credentials.
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.get_current_user)):
return f"Hello, {user.email}"
get_current_active_user
Get the current active user. Will throw a 401 Unauthorized if missing or wrong credentials or if the user is not active.
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.get_current_active_user)):
return f"Hello, {user.email}"
get_current_verified_user
Get the current active and verified user. Will throw a 401 Unauthorized if missing or wrong credentials or if the user is not active and verified.
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.get_current_verified_user)):
return f"Hello, {user.email}"
get_current_superuser
Get the current superuser. Will throw a 401 Unauthorized if missing or wrong credentials or if the user is not active. Will throw a 403 Forbidden if the user is not a superuser.
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.get_current_superuser)):
return f"Hello, {user.email}"
get_current_verified_superuser
Get the current verified superuser. Will throw a 401 Unauthorized if missing or wrong credentials or if the user is not active and verified. Will throw a 403 Forbidden if the user is not a superuser.
@app.get("/protected-route")
def protected_route(user: User = Depends(fastapi_users.get_current_verified_superuser)):
return f"Hello, {user.email}"
get_optional_current_user
Get the current user (active or not). Will return None if missing or wrong credentials. It can be useful if you wish to change the behaviour of your endpoint if a user is logged in or not.
@app.get("/optional-user-route")
def optional_user_route(user: Optional[User] = Depends(fastapi_users.get_optional_current_user)):
if user:
return f"Hello, {user.email}"
else:
return "Hello, anonymous"
get_optional_current_active_user
Get the current active user. Will return None if missing or wrong credentials or if the user is not active. It can be useful if you wish to change the behaviour of your endpoint if a user is logged in or not.
@app.get("/optional-user-route")
def optional_user_route(user: User = Depends(fastapi_users.get_optional_current_active_user)):
if user:
return f"Hello, {user.email}"
else:
return "Hello, anonymous"
get_optional_current_verified_user
Get the current active and verified user. Will return None if missing or wrong credentials or if the user is not active and verified. It can be useful if you wish to change the behaviour of your endpoint if a user is logged in or not.
@app.get("/optional-user-route")
def optional_user_route(user: User = Depends(fastapi_users.get_optional_current_verified_user)):
if user:
return f"Hello, {user.email}"
else:
return "Hello, anonymous"
get_optional_current_superuser
Get the current superuser. Will return None if missing or wrong credentials or if the user is not active. It can be useful if you wish to change the behaviour of your endpoint if a user is logged in or not.
@app.get("/optional-user-route")
def optional_user_route(user: User = Depends(fastapi_users.get_optional_current_superuser)):
if user:
return f"Hello, {user.email}"
else:
return "Hello, anonymous"
get_optional_current_verified_superuser
Get the current active and verified superuser. Will return None if missing or wrong credentials or if the user is not active and verified. It can be useful if you wish to change the behaviour of your endpoint if a user is logged in or not.
@app.get("/optional-user-route")
def optional_user_route(user: User = Depends(fastapi_users.get_optional_current_verified_superuser)):
if user:
return f"Hello, {user.email}"
else:
return "Hello, anonymous"
In path operation
If you don't need the user in the route logic, you can use this syntax:
@app.get("/protected-route", dependencies=[Depends(fastapi_users.get_current_superuser)])
def protected_route():
return "Hello, some user."
You can read more about this in FastAPI docs.