CooperandGoodman/sproutly
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
sproutly/backend/routers/varieties.py
derekc 4db9988406 Add multi-user authentication with JWT 
- Users table with email/bcrypt-hashed password; register and login via /auth/ endpoints
- JWT tokens (30-day expiry) stored in localStorage; all API routes require Bearer auth
- All data (varieties, batches, settings, notification logs) scoped to the authenticated user
- Login/register screen overlays the app; sidebar shows user email and logout button
- Scheduler sends daily ntfy summaries for every configured user
- DB schema rewritten for multi-user; SECRET_KEY added to env

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-09 00:08:28 -07:00

54 lines
2.1 KiB
Python
Raw Permalink Blame History

from fastapi import APIRouter, Depends, HTTPException
from sqlalchemy.orm import Session
from typing import List
from auth import get_current_user
from database import get_db
from models import User, Variety
from schemas import VarietyCreate, VarietyOut, VarietyUpdate
router = APIRouter(prefix="/varieties", tags=["varieties"])
@router.get("/", response_model=List[VarietyOut])
def list_varieties(db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
return db.query(Variety).filter(Variety.user_id == current_user.id).order_by(Variety.category, Variety.name).all()
@router.get("/{variety_id}", response_model=VarietyOut)
def get_variety(variety_id: int, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
v = db.query(Variety).filter(Variety.id == variety_id, Variety.user_id == current_user.id).first()
if not v:
raise HTTPException(status_code=404, detail="Variety not found")
return v
@router.post("/", response_model=VarietyOut, status_code=201)
def create_variety(data: VarietyCreate, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
v = Variety(**data.model_dump(), user_id=current_user.id)
db.add(v)
db.commit()
db.refresh(v)
return v
@router.put("/{variety_id}", response_model=VarietyOut)
def update_variety(variety_id: int, data: VarietyUpdate, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
v = db.query(Variety).filter(Variety.id == variety_id, Variety.user_id == current_user.id).first()
if not v:
raise HTTPException(status_code=404, detail="Variety not found")
for field, value in data.model_dump().items():
setattr(v, field, value)
db.commit()
db.refresh(v)
return v
@router.delete("/{variety_id}", status_code=204)
def delete_variety(variety_id: int, db: Session = Depends(get_db), current_user: User = Depends(get_current_user)):
v = db.query(Variety).filter(Variety.id == variety_id, Variety.user_id == current_user.id).first()
if not v:
raise HTTPException(status_code=404, detail="Variety not found")
db.delete(v)
db.commit()
Reference in New Issue View Git Blame Copy Permalink