| --- |
| title: FastAPI Simple Auth Docs Upload |
| emoji: π |
| colorFrom: indigo |
| colorTo: purple |
| sdk: docker |
| pinned: false |
| --- |
| |
| # Task 1: FastAPI File Management Application |
| A modern, fast, and secure web application built with **FastAPI**, **MySQL**, and **Jinja2**. This application allows users to register, log in, manage their profiles, and securely upload, download, and delete files through a beautiful dark-themed, glassmorphic UI. |
|
|
| --- |
|
|
| ## π Features |
|
|
| - **User Authentication**: Secure signup and login functionality using hashed passwords (bcrypt) and cookie-based session management. |
| - **File Management**: Upload (up to 2 files at once), download, and delete files securely. |
| - **Interactive Dashboard**: A user-friendly dashboard to view all stored files, track upload times, and manage data. |
| - **RESTful API**: Along with the frontend, the app provides standard JSON API endpoints for profile management and system interactions. |
| - **Glassmorphic UI**: A stunning, responsive frontend built with customized CSS and Jinja2 templates. |
|
|
| --- |
|
|
| ## π οΈ Tech Stack |
|
|
| - **Backend**: FastAPI (Python) |
| - **Database**: MySQL (via SQLAlchemy ORM) |
| - **Frontend**: HTML5, CSS3 (Glassmorphism), Jinja2 Templates |
| - **Authentication**: JWT token-based auth stored in HTTP-only cookies |
| - **File Storage**: Local filesystem (`backend/uploaded_files/`) |
|
|
| --- |
|
|
| ## π Prerequisites |
|
|
| Before you begin, ensure you have the following installed: |
| - Python 3.9+ |
| - MySQL Server (running locally or remotely) |
| - `pip` (Python package manager) |
|
|
| --- |
|
|
| ## βοΈ Installation & Setup |
|
|
| 1. **Clone or Download the Repository** |
| Navigate to the project directory: |
| ```bash |
| cd "g:\Soft Mania\internship\task 1" |
| ``` |
|
|
| 2. **Set Up a Virtual Environment** |
| ```bash |
| python -m venv venv |
| # On Windows: |
| .\venv\Scripts\activate |
| # On macOS/Linux: |
| source venv/bin/activate |
| ``` |
|
|
| 3. **Install Dependencies** |
| Install all required packages from `req.txt`: |
| ```bash |
| pip install -r req.txt |
| ``` |
|
|
| 4. **Database Configuration** |
| Ensure your MySQL server is running. Create a database (e.g., `testbd`). |
| Update the `DATABASE_URL` string in `backend/main.py` if your database credentials differ from: |
| ```python |
| SQLALCHEMY_DATABASE_URL = "mysql+pymysql://root:root@localhost/testbd" |
| ``` |
|
|
| 5. **Run the Application** |
| Start the FastAPI development server using Uvicorn: |
| ```bash |
| python -m uvicorn backend.main:app --host 0.0.0.0 --port 8890 --reload |
| ``` |
|
|
| --- |
|
|
| ## π Usage Guide |
|
|
| Once the server is running, the application is accessible through your web browser. |
|
|
| ### π Web Interface (UI) |
| - **Home / Login**: Navigate to `http://localhost:8890/login` to access the login portal. |
| - **Sign Up**: If you are a new user, click "Sign up" on the login page or navigate to `http://localhost:8890/signup` to create a new account. |
| - **Dashboard**: Upon logging in, you will be redirected to `http://localhost:8890/dashboard`. |
| - **Uploading**: Use the "Upload Files" panel to select and upload up to 2 files (PDF, PNG, JPG/JPEG). |
| - **Managing Files**: View your uploaded files in the "Your Files" table. Click **β¬ Download** to save them locally, or **π Delete** to remove them permanently from the server. |
| - **Logout**: Click the "Logout" button in the top right corner of the dashboard to securely end your session. |
|
|
| ### π API Endpoints (For Developers) |
| The application also exposes JSON endpoints that can be tested via tools like Postman or cURL. |
| *(Note: Some UI and API routes share paths depending on the method and `Accept` headers).* |
|
|
| - `POST /signup` - Register a new user (Form Data or JSON). |
| - `POST /login` - Authenticate and receive an access token. |
| - `GET /users/me` - Retrieve current logged-in user details. |
| - `POST /upload` - Upload files via API. |
| - `GET /files` - List all files belonging to the auth user. |
| - `DELETE /files/{id}` - Delete a specific file. |
|
|
| --- |
|
|
| ## π Project Structure |
|
|
| ```text |
| task 1/ |
| β |
| βββ backend/ |
| β βββ main.py # Main FastAPI application & routes |
| β βββ templates/ # Jinja2 HTML Templates |
| β β βββ base.html # Global layout wrapper |
| β β βββ login.html # Login page |
| β β βββ signup.html # Registration page |
| β β βββ dashboard.html # User file management dashboard |
| β βββ static/ |
| β β βββ style.css # Design system & Glassmorphic styles |
| β βββ uploaded_files/ # Secure directory for user uploads |
| β |
| βββ req.txt # Project dependencies list |
| βββ .gitignore # Files ignored by version control |
| βββ README.md # This documentation file |
| ``` |
|
|
| --- |
|
|
| ## π Security Notes |
| - Passwords are securely hashed using `bcrypt` before being stored in MySQL. |
| - Uploaded files are renamed with unique identifiers to prevent overwriting and path traversal attacks. |
| - Session tokens are stored in `httponly` browser cookies for the UI flow to mitigate XSS risks. |
|
|
