Built site for gh-pages

chriscarrollsmith · chriscarrollsmith · commit f534f12e7b3c · 2024-12-02T01:45:54.000Z
diff --git a/.nojekyll b/.nojekyll
@@ -1 +1 @@
-5420a02e
+ee3921f1
diff --git a/docs/customization.html b/docs/customization.html
@@ -256,8 +256,9 @@ <h3 class="anchored" data-anchor-id="type-checking-with-mypy">Type checking with
 </section>
 <section id="developing-with-llms" class="level3">
 <h3 class="anchored" data-anchor-id="developing-with-llms">Developing with LLMs</h3>
-<p>In line with the <a href="https://llmstxt.org/">llms.txt standard</a>, we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a <a href="static/llms.txt">text file</a>. One use case for this file is to rename it to <code>.cursorrules</code> and place it in your project directory is using the Cursor IDE (see the <a href="https://docs.cursor.com/context/rules-for-ai">Cursor docs</a> on this for more information).</p>
-<p>We have also exposed the full Markdown-formatted project documentation as a <a href="static/documentation.txt">single text file</a> for easy downloading and embedding.</p>
+<p>In line with the <a href="https://llmstxt.org/">llms.txt standard</a>, we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a text file: <a href="static/llms.txt">llms.txt</a>.</p>
+<p>One use case for this file, if using the Cursor IDE, is to rename it to <code>.cursorrules</code> and place it in your project directory (see the <a href="https://docs.cursor.com/context/rules-for-ai">Cursor docs</a> on this for more information). Alternatively, you could use it as a custom system prompt in the web interface for ChatGPT, Claude, or the LLM of your choice.</p>
+<p>We have also exposed the full Markdown-formatted project documentation as a <a href="static/documentation.txt">single text file</a> for easy downloading and embedding for RAG workflows.</p>
 </section>
 </section>
 <section id="project-structure" class="level2">
@@ -303,7 +304,7 @@ <h4 class="anchored" data-anchor-id="routing-patterns-in-this-template">Routing
 <p>In this template, GET routes are defined in the main entry point for the application, <code>main.py</code>. POST routes are organized into separate modules within the <code>routers/</code> directory.</p>
 <p>We name our GET routes using the convention <code>read_&lt;name&gt;</code>, where <code>&lt;name&gt;</code> is the name of the page, to indicate that they are read-only endpoints that do not modify the database.</p>
 <p>We divide our GET routes into authenticated and unauthenticated routes, using commented section headers in our code that look like this:</p>
-<div class="sourceCode" id="cb2"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb2-1"><a href="#cb2-1" aria-hidden="true" tabindex="-1"></a><span class="co"># -- Authenticated Routes --</span></span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
+<div class="sourceCode" id="cb2"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb2-1"><a href="#cb2-1" aria-hidden="true" tabindex="-1"></a><span class="co"># --- Authenticated Routes ---</span></span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
 <p>Some of our routes take request parameters, which we pass as keyword arguments to the route handler. These parameters should be type annotated for validation purposes.</p>
 <p>Some parameters are shared across all authenticated or unauthenticated routes, so we define them in the <code>common_authenticated_parameters</code> and <code>common_unauthenticated_parameters</code> dependencies defined in <code>main.py</code>.</p>
 </section>
@@ -416,11 +417,16 @@ <h4 class="anchored" data-anchor-id="models-and-relationships">Models and relati
 <p>Our database models are defined in <code>utils/models.py</code>. Each model is a Python class that inherits from <code>SQLModel</code> and represents a database table. The key models are:</p>
 <ul>
 <li><code>Organization</code>: Represents a company or team</li>
-<li><code>User</code>: Represents a user account</li>
-<li><code>Role</code>: Represents a discrete set of user permissions within an organization</li>
-<li><code>Permission</code>: Represents specific actions a user can perform</li>
-<li><code>RolePermissionLink</code>: Maps roles to their allowed permissions</li>
-<li><code>PasswordResetToken</code>: Manages password reset functionality</li>
+<li><code>User</code>: Represents a user account with name, email, and avatar</li>
+<li><code>Role</code>: Represents a set of permissions within an organization</li>
+<li><code>Permission</code>: Represents specific actions a user can perform (defined by ValidPermissions enum)</li>
+<li><code>PasswordResetToken</code>: Manages password reset functionality with expiration</li>
+<li><code>UserPassword</code>: Stores hashed user passwords separately from user data</li>
+</ul>
+<p>Two additional models are used by SQLModel to manage many-to-many relationships; you generally will not need to interact with them directly:</p>
+<ul>
+<li><code>UserRoleLink</code>: Maps users to their roles (many-to-many relationship)</li>
+<li><code>RolePermissionLink</code>: Maps roles to their permissions (many-to-many relationship)</li>
 </ul>
 <p>Here’s an entity-relationship diagram (ERD) of the current database schema, automatically generated from our SQLModel definitions:</p>
 <div class="quarto-figure quarto-figure-center">
@@ -444,19 +450,25 @@ <h4 class="anchored" data-anchor-id="database-helpers">Database helpers</h4>
 <span id="cb8-3"><a href="#cb8-3" aria-hidden="true" tabindex="-1"></a>    users <span class="op">=</span> session.<span class="bu">exec</span>(select(User)).<span class="bu">all</span>()</span>
 <span id="cb8-4"><a href="#cb8-4" aria-hidden="true" tabindex="-1"></a>    <span class="cf">return</span> users</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
 <p>The session automatically handles transaction management, ensuring that database operations are atomic and consistent.</p>
+<p>There is also a helper method on the <code>User</code> model that checks if a user has a specific permission for a given organization. Its first argument must be a <code>ValidPermissions</code> enum value (from <code>utils/models.py</code>), and its second argument must be an <code>Organization</code> object or an <code>int</code> representing an organization ID:</p>
+<div class="sourceCode" id="cb9"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb9-1"><a href="#cb9-1" aria-hidden="true" tabindex="-1"></a>permission <span class="op">=</span> ValidPermissions.CREATE_ROLE</span>
+<span id="cb9-2"><a href="#cb9-2" aria-hidden="true" tabindex="-1"></a>organization <span class="op">=</span> session.<span class="bu">exec</span>(select(Organization).where(Organization.name <span class="op">==</span> <span class="st">"Acme Inc."</span>)).first()</span>
+<span id="cb9-3"><a href="#cb9-3" aria-hidden="true" tabindex="-1"></a></span>
+<span id="cb9-4"><a href="#cb9-4" aria-hidden="true" tabindex="-1"></a>user.has_permission(permission, organization)</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
+<p>You should create custom <code>ValidPermissions</code> enum values for your application and validate that users have the necessary permissions before allowing them to modify organization data resources.</p>
 </section>
 <section id="cascade-deletes" class="level4">
 <h4 class="anchored" data-anchor-id="cascade-deletes">Cascade deletes</h4>
 <p>Cascade deletes (in which deleting a record from one table deletes related records from another table) can be handled at either the ORM level or the database level. This template handles cascade deletes at the ORM level, via SQLModel relationships. Inside a SQLModel <code>Relationship</code>, we set:</p>
-<div class="sourceCode" id="cb9"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb9-1"><a href="#cb9-1" aria-hidden="true" tabindex="-1"></a>sa_relationship_kwargs<span class="op">=</span>{</span>
-<span id="cb9-2"><a href="#cb9-2" aria-hidden="true" tabindex="-1"></a>    <span class="st">"cascade"</span>: <span class="st">"all, delete-orphan"</span></span>
-<span id="cb9-3"><a href="#cb9-3" aria-hidden="true" tabindex="-1"></a>}</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
+<div class="sourceCode" id="cb10"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb10-1"><a href="#cb10-1" aria-hidden="true" tabindex="-1"></a>sa_relationship_kwargs<span class="op">=</span>{</span>
+<span id="cb10-2"><a href="#cb10-2" aria-hidden="true" tabindex="-1"></a>    <span class="st">"cascade"</span>: <span class="st">"all, delete-orphan"</span></span>
+<span id="cb10-3"><a href="#cb10-3" aria-hidden="true" tabindex="-1"></a>}</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
 <p>This tells SQLAlchemy to cascade all operations (e.g., <code>SELECT</code>, <code>INSERT</code>, <code>UPDATE</code>, <code>DELETE</code>) to the related table. Since this happens through the ORM, we need to be careful to do all our database operations through the ORM using supported syntax. That generally means loading database records into Python objects and then deleting those objects rather than deleting records in the database directly.</p>
 <p>For example,</p>
-<div class="sourceCode" id="cb10"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb10-1"><a href="#cb10-1" aria-hidden="true" tabindex="-1"></a>session.<span class="bu">exec</span>(delete(Role))</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
+<div class="sourceCode" id="cb11"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb11-1"><a href="#cb11-1" aria-hidden="true" tabindex="-1"></a>session.<span class="bu">exec</span>(delete(Role))</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
 <p>will not trigger the cascade delete. Instead, we need to select the role objects and then delete them:</p>
-<div class="sourceCode" id="cb11"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb11-1"><a href="#cb11-1" aria-hidden="true" tabindex="-1"></a><span class="cf">for</span> role <span class="kw">in</span> session.<span class="bu">exec</span>(select(Role)).<span class="bu">all</span>():</span>
-<span id="cb11-2"><a href="#cb11-2" aria-hidden="true" tabindex="-1"></a>    session.delete(role)</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
+<div class="sourceCode" id="cb12"><pre class="sourceCode python code-with-copy"><code class="sourceCode python"><span id="cb12-1"><a href="#cb12-1" aria-hidden="true" tabindex="-1"></a><span class="cf">for</span> role <span class="kw">in</span> session.<span class="bu">exec</span>(select(Role)).<span class="bu">all</span>():</span>
+<span id="cb12-2"><a href="#cb12-2" aria-hidden="true" tabindex="-1"></a>    session.delete(role)</span></code><button title="Copy to Clipboard" class="code-copy-button"><i class="bi"></i></button></pre></div>
 <p>This is slower than deleting the records directly, but it makes <a href="https://sqlmodel.tiangolo.com/tutorial/many-to-many/create-models-with-link/#create-the-tables">many-to-many relationships</a> much easier to manage.</p>
 
 
diff --git a/docs/static/documentation.txt b/docs/static/documentation.txt
@@ -192,9 +192,11 @@ with open(output_path, 'w', encoding='utf-8') as f:
     f.write(final_content)
 ```
 
-In line with the [llms.txt standard](https://llmstxt.org/), we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a [text file](docs/static/llms.txt). One use case for this file is to rename it to `.cursorrules` and place it in your project directory is using the Cursor IDE (see the [Cursor docs](https://docs.cursor.com/context/rules-for-ai) on this for more information).
+In line with the [llms.txt standard](https://llmstxt.org/), we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a text file: [llms.txt](docs/static/llms.txt).
 
-We have also exposed the full Markdown-formatted project documentation as a [single text file](docs/static/documentation.txt) for easy downloading and embedding.
+One use case for this file, if using the Cursor IDE, is to rename it to `.cursorrules` and place it in your project directory (see the [Cursor docs](https://docs.cursor.com/context/rules-for-ai) on this for more information). Alternatively, you could use it as a custom system prompt in the web interface for ChatGPT, Claude, or the LLM of your choice.
+
+We have also exposed the full Markdown-formatted project documentation as a [single text file](docs/static/documentation.txt) for easy downloading and embedding for RAG workflows.
 
 ## Contributing
 
@@ -692,9 +694,11 @@ We find that mypy is an enormous time-saver, catching many errors early and grea
 
 ### Developing with LLMs
 
-In line with the [llms.txt standard](https://llmstxt.org/), we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a [text file](static/llms.txt). One use case for this file is to rename it to `.cursorrules` and place it in your project directory is using the Cursor IDE (see the [Cursor docs](https://docs.cursor.com/context/rules-for-ai) on this for more information).
+In line with the [llms.txt standard](https://llmstxt.org/), we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a text file: [llms.txt](static/llms.txt).
+
+One use case for this file, if using the Cursor IDE, is to rename it to `.cursorrules` and place it in your project directory (see the [Cursor docs](https://docs.cursor.com/context/rules-for-ai) on this for more information). Alternatively, you could use it as a custom system prompt in the web interface for ChatGPT, Claude, or the LLM of your choice.
 
-We have also exposed the full Markdown-formatted project documentation as a [single text file](static/documentation.txt) for easy downloading and embedding.
+We have also exposed the full Markdown-formatted project documentation as a [single text file](static/documentation.txt) for easy downloading and embedding for RAG workflows.
 
 ## Project structure
 
@@ -738,7 +742,7 @@ We name our GET routes using the convention `read_<name>`, where `<name>` is the
 We divide our GET routes into authenticated and unauthenticated routes, using commented section headers in our code that look like this:
 
 ```python
-# -- Authenticated Routes --
+# --- Authenticated Routes ---
 ```
 
 Some of our routes take request parameters, which we pass as keyword arguments to the route handler. These parameters should be type annotated for validation purposes.
@@ -885,11 +889,16 @@ SQLModel is an Object-Relational Mapping (ORM) library that allows us to interac
 Our database models are defined in `utils/models.py`. Each model is a Python class that inherits from `SQLModel` and represents a database table. The key models are:
 
 - `Organization`: Represents a company or team
-- `User`: Represents a user account
-- `Role`: Represents a discrete set of user permissions within an organization
-- `Permission`: Represents specific actions a user can perform
-- `RolePermissionLink`: Maps roles to their allowed permissions
-- `PasswordResetToken`: Manages password reset functionality
+- `User`: Represents a user account with name, email, and avatar
+- `Role`: Represents a set of permissions within an organization
+- `Permission`: Represents specific actions a user can perform (defined by ValidPermissions enum)
+- `PasswordResetToken`: Manages password reset functionality with expiration
+- `UserPassword`: Stores hashed user passwords separately from user data
+
+Two additional models are used by SQLModel to manage many-to-many relationships; you generally will not need to interact with them directly:
+
+- `UserRoleLink`: Maps users to their roles (many-to-many relationship)
+- `RolePermissionLink`: Maps roles to their permissions (many-to-many relationship)
 
 Here's an entity-relationship diagram (ERD) of the current database schema, automatically generated from our SQLModel definitions:
 
@@ -939,6 +948,17 @@ async def get_users(session: Session = Depends(get_session)):
 
 The session automatically handles transaction management, ensuring that database operations are atomic and consistent.
 
+There is also a helper method on the `User` model that checks if a user has a specific permission for a given organization. Its first argument must be a `ValidPermissions` enum value (from `utils/models.py`), and its second argument must be an `Organization` object or an `int` representing an organization ID:
+
+```python
+permission = ValidPermissions.CREATE_ROLE
+organization = session.exec(select(Organization).where(Organization.name == "Acme Inc.")).first()
+
+user.has_permission(permission, organization)
+```
+
+You should create custom `ValidPermissions` enum values for your application and validate that users have the necessary permissions before allowing them to modify organization data resources.
+
 #### Cascade deletes
 
 Cascade deletes (in which deleting a record from one table deletes related records from another table) can be handled at either the ORM level or the database level. This template handles cascade deletes at the ORM level, via SQLModel relationships. Inside a SQLModel `Relationship`, we set:
diff --git a/index.html b/index.html
@@ -327,8 +327,9 @@ <h3 class="anchored" data-anchor-id="lint-types-with-mypy">Lint types with mypy<
 </section>
 <section id="developing-with-llms" class="level2">
 <h2 class="anchored" data-anchor-id="developing-with-llms">Developing with LLMs</h2>
-<p>In line with the <a href="https://llmstxt.org/">llms.txt standard</a>, we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a <a href="docs/static/llms.txt">text file</a>. One use case for this file is to rename it to <code>.cursorrules</code> and place it in your project directory is using the Cursor IDE (see the <a href="https://docs.cursor.com/context/rules-for-ai">Cursor docs</a> on this for more information).</p>
-<p>We have also exposed the full Markdown-formatted project documentation as a <a href="docs/static/documentation.txt">single text file</a> for easy downloading and embedding.</p>
+<p>In line with the <a href="https://llmstxt.org/">llms.txt standard</a>, we have provided a Markdown-formatted prompt—designed to help LLM agents understand how to work with this template—as a text file: <a href="docs/static/llms.txt">llms.txt</a>.</p>
+<p>One use case for this file, if using the Cursor IDE, is to rename it to <code>.cursorrules</code> and place it in your project directory (see the <a href="https://docs.cursor.com/context/rules-for-ai">Cursor docs</a> on this for more information). Alternatively, you could use it as a custom system prompt in the web interface for ChatGPT, Claude, or the LLM of your choice.</p>
+<p>We have also exposed the full Markdown-formatted project documentation as a <a href="docs/static/documentation.txt">single text file</a> for easy downloading and embedding for RAG workflows.</p>
 </section>
 <section id="contributing" class="level2">
 <h2 class="anchored" data-anchor-id="contributing">Contributing</h2>
diff --git a/search.json b/search.json
diff --git a/sitemap.xml b/sitemap.xml
