Skip to content

conao3-playground/python-jwt-sample-server

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
src/jwt_sample_server
src/jwt_sample_server
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
poetry.lock
poetry.lock
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

python-jwt-sample-server

Usage

poetry install
poetry run jwt-sample-server

Then, server is running on http://localhost:8000

Access http://localhost:8000/docs via web browser to see API document.

Endpoints

GET /

Sample endpoint. Returns {"message": "Hello, world!"}.

$ curl localhost:8000
{"message":"Hello World"}

POST /token

Get JWT token.

Below users available. Password is secure for all users.

  • alice
  • bob
  • eve (Disabled user)
$ curl localhost:8000/token -d 'username=alice&password=secret'
{"access_token":"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJhbGljZSIsImV4cCI6MTY4NzY2NTY4M30.762CT8j1Lve-KUbGxP2i7agXM0DHf0DjwXjxX9GCzSA","token_type":"bearer"}

GET /private

Private endpoint. Bearer token is required.

Without Bearer token, returns {"detail": "Not authenticated"}.

$ curl localhost:8000/private
{"detail":"Not authenticated"}

With Bearer token, returns {"message": "Hello, private world!"}.

$ TOKEN=$(curl localhost:8000/token -d 'username=alice&password=secret' | jq -r .access_token)
$ curl localhost:8000/private -H "Authorization: Bearer $TOKEN"
{"message":"Hello Private World"}

With Bearer token of disabled user, returns {"detail": "Inactive user"}.

$ TOKEN=$(curl localhost:8000/token -d 'username=eve&password=secret' | jq -r .access_token)
$ curl localhost:8000/private -H "Authorization: Bearer $TOKEN"
{"detail":"Inactive user"}

After 1 minute, Bearer token is expired. Returns {"detail":"Could not validate credentials"}.

$ curl localhost:8000/users/me -H "Authorization: Bearer $TOKEN"
{"detail":"Could not validate credentials"}

GET /users/me

Get current user information.

$ TOKEN=$(curl localhost:8000/token -d 'username=alice&password=secret' | jq -r .access_token)
$ curl localhost:8000/users/me -H "Authorization: Bearer $TOKEN"
{"username":"alice","email":"alice@example.com","full_name":"alice","disabled":false}

$ TOKEN=$(curl localhost:8000/token -d 'username=bob&password=secret' | jq -r .access_token)
$ curl localhost:8000/users/me -H "Authorization: Bearer $TOKEN"
{"username":"bob","email":"bob@example.com","full_name":"bob","disabled":false}

$ TOKEN=$(curl localhost:8000/token -d 'username=eve&password=secret' | jq -r .access_token)
$ curl localhost:8000/users/me -H "Authorization: Bearer $TOKEN"
{"detail":"Inactive user"}

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages