Add profile picture upload functionality using Cloudinary and update user profile

main.py

@@ -1,4 +1,4 @@
-from fastapi import FastAPI, HTTPException, Depends, status, APIRouter
+from fastapi import FastAPI, HTTPException, Depends, status, APIRouter, UploadFile, File
 from fastapi.security import OAuth2PasswordRequestForm, OAuth2PasswordBearer
 from fastapi.middleware.cors import CORSMiddleware
 from datetime import datetime, timedelta, timezone
@@ -7,12 +7,19 @@ from typing import Optional, List
 from pydantic import BaseModel, Field, validator
 import jwt
 import database
+import cloudinary
+import cloudinary.uploader
+import os
 
 # JWT configuration
 SECRET_KEY = "06J3LND9NFH"
 ALGORITHM = "HS256"
 ACCESS_TOKEN_EXPIRE_MINUTES = 43200
 
+CLOUD_NAME = os.getenv('CLOUD_NAME')
+API_KEY = int(os.getenv('API_KEY'))
+API_SECRET = os.getenv('API_SECRET')
+
 app = FastAPI()
 
 # Uncomment and adjust CORS if needed:
@@ -24,6 +31,13 @@ app = FastAPI()
 #     allow_headers=["*"],
 # )
 
+# Configure Cloudinary (ensure you have set your credentials accordingly)
+cloudinary.config(
+    cloud_name=CLOUD_NAME,
+    api_key=API_KEY,
+    api_secret=API_SECRET
+)
+
 # Define the OAuth2 scheme for OpenAPI docs.
 oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/api/v1/auth/login")
 
@@ -329,6 +343,29 @@ def delete_existing_user(user_id: int, current_user: dict = Depends(get_current_
     database.delete_user(user_id)
     return {"detail": "User deleted"}
 
+@user_router.post("/upload-profile-picture", response_model=UserOut)
+async def upload_profile_picture(file: UploadFile = File(...), current_user: dict = Depends(get_current_user)):
+    try:
+        result = cloudinary.uploader.upload(file.file)
+    except Exception as e:
+        raise HTTPException(status_code=400, detail=f"Image upload failed: {str(e)}")
+    image_url = result.get("secure_url")
+    if not image_url:
+        raise HTTPException(status_code=400, detail="Failed to obtain image URL from Cloudinary")
+    # Update the user's profile picture in the database
+    database.update_user(
+        current_user["user_id"],
+        username=None,
+        email=None,
+        password_hash=None,
+        first_name=None,
+        last_name=None,
+        bio=None,
+        profile_picture=image_url
+    )
+    updated_user = database.get_user_by_id(current_user["user_id"])
+    return updated_user
+
 # Authentication Router
 auth_router = APIRouter(prefix="/api/v1/auth", tags=["Authentication"])
 
@@ -338,7 +375,6 @@ def login(form_data: OAuth2PasswordRequestForm = Depends()):
     if not user:
         raise HTTPException(status_code=400, detail="Incorrect username or password")
     access_token = create_access_token(data={"sub": user["username"]})
-    # Return the token so clients can include it in the "Authorization" header.
     return {"access_token": access_token, "token_type": "bearer"}
 
 @auth_router.get("/me", response_model=UserOut)
@@ -443,7 +479,6 @@ event_router = APIRouter(prefix="/api/v1/events", tags=["Events"])
 
 @event_router.post("/create", response_model=EventOut)
 def create_event(event: EventCreate, current_user: dict = Depends(get_current_user)):
-    # Convert empty or default values to None for optional recurrence fields
     recurrence_type = event.recurrence_type.strip() if event.recurrence_type and event.recurrence_type.strip() else None
     recurrence_interval = event.recurrence_interval if event.recurrence_interval and event.recurrence_interval != 0 else None
     recurrence_end_date = event.recurrence_end_date if event.recurrence_end_date else None

requirements.txt

@@ -5,4 +5,5 @@ passlib
 python-multipart
 pyjwt
 PyMySQL
-bcrypt
+bcrypt
+cloudinary