First commit

Author: jeffmaki

.gitignore

@@ -158,3 +158,4 @@ cython_debug/
 #  and can be added to the global gitignore or merged into this file.  For a more nuclear
 #  option (not recommended) you can uncomment the following to ignore the entire idea folder.
 #.idea/
+alembic/versions/.DS_Store

README.md

@@ -1,115 +1,7 @@
-# Hero API 🦸‍♂️
-A modern, production-ready FastAPI template for building scalable APIs.
+# To start on your local machine
 
-## Features ✨
-- 🔄 Complete CRUD operations for heroes
-- 📊 Async SQLAlchemy with PostgreSQL
-- 🔄 Automatic Alembic migrations
-- 🏗️ Clean architecture with repository pattern
-- ⚠️ Custom exception handling
-- 🔍 CI and testing pipeline
-- 🧹 Linter setup with pre-commit hooks
-- 🚂 One-click Railway deployment
-
-## Deploy Now! 🚀
-[![Deploy on Railway](https://railway.com/button.svg)](https://railway.com/template/wbTudS?referralCode=beBXJA)
-
-## Project Structure 📁
-```
-api/
-├── core/              # Core functionality
-│   ├── config.py      # Environment and app configuration
-│   ├── database.py    # Database connection and sessions
-│   ├── exceptions.py  # Global exception handlers
-│   ├── logging.py     # Logging configuration
-│   └── security.py    # Authentication and security
-├── src/
-│   ├── heroes/        # Heroes module
-│   │   ├── models.py      # Database models
-│   │   ├── repository.py  # Data access layer
-│   │   ├── routes.py      # API endpoints
-│   │   └── schemas.py     # Pydantic models
-│   └── users/         # Users module
-│       ├── models.py      # User models
-│       ├── repository.py  # User data access
-│       ├── routes.py      # User endpoints
-│       └── schemas.py     # User schemas
-├── utils/            # Utility functions
-└── main.py          # Application entry point
-```
-
-## Requirements 📋
-- Python 3.8+
-- PostgreSQL
-
-## Setup 🛠️
-1. Install uv (follow instructions [here](https://docs.astral.sh/uv/#getting-started))
-
-2. Clone the repository:
-```bash
-git clone https://github.com/yourusername/minimalistic-fastapi-template.git
-cd minimalistic-fastapi-template
 ```
-
-3. Install dependencies with uv:
-```bash
+cp .env.example .env # edit this file for your config
 uv sync
-```
-
-4. Set up environment variables:
-```bash
-cp .env.example .env
-# Edit .env with your database credentials
-```
-
-> 💡 **Important**: 
-> - The DATABASE_URL must start with `postgresql+asyncpg://` (e.g., `postgresql+asyncpg://user:pass@localhost:5432/dbname`)
-> - After updating environment variables, close and reopen VS Code to reload the configuration properly. VS Code will automatically activate the virtual environment when you reopen.
-
-5. Start the application:
-
-Using terminal:
-```bash
 uv run uvicorn api.main:app
-```
-
-Using VS Code:
-> 💡 If you're using VS Code, we've included run configurations in the `.vscode` folder. Just press `F5` or use the "Run and Debug" panel to start the application!
-
-6. (Optional) Enable pre-commit hooks for linting:
-```bash
-uv run pre-commit install
-```
-> 💡 This will enable automatic code formatting and linting checks before each commit
-
-## Creating a Migration 🔄
-1. Make changes to your models
-2. Generate migration:
-```bash
-alembic revision --autogenerate -m "your migration message"
-```
-
-Note: Migrations will be automatically applied when you start the application - no need to run `alembic upgrade head` manually!
-
-## API Endpoints 📊
-### Heroes
-- `GET /heroes` - List all heroes
-- `GET /heroes/{id}` - Get a specific hero
-- `POST /heroes` - Create a new hero
-- `PATCH /heroes/{id}` - Update a hero
-- `DELETE /heroes/{id}` - Delete a hero
-
-### Authentication
-- `POST /auth/register` - Register a new user
-- `POST /auth/login` - Login and get access token
-- `GET /auth/me` - Get current user profile
-
-## Example Usage 📝
-Create a new hero:
-```bash
-curl -X POST "http://localhost:8000/heroes/" -H "Content-Type: application/json" -d '{
-    "name": "Peter Parker",
-    "alias": "Spider-Man",
-    "powers": "Wall-crawling, super strength, spider-sense"
-}'
-```
+```

alembic.ini

@@ -1,6 +1,6 @@
 [alembic]
 script_location = alembic
-sqlalchemy.url = postgresql+asyncpg://postgres:postgres@localhost:5432/hero_db
+sqlalchemy.url = postgresql+asyncpg://postgres:postgres@localhost:5432/tasking_manager
 
 [loggers]
 keys = root,sqlalchemy,alembic

alembic/versions/3dee83604016_initial_migration.py

@@ -0,0 +1,33 @@
+"""Add workspace long form quest type and URL fields
+
+Revision ID: add6266277c7
+Revises: c5121cbba124
+Create Date: 2025-09-12 04:18:05.931799
+
+"""
+from alembic import op
+import sqlalchemy as sa
+
+
+# revision identifiers, used by Alembic.
+revision = "add6266277c7"
+branch_labels = None
+depends_on = None
+down_revision = None
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    with op.batch_alter_table("workspaces_long_quests", schema=None) as batch_op:
+        batch_op.add_column(sa.Column("type", sa.Integer(), nullable=False, server_default="0"))
+        batch_op.add_column(sa.Column("url", sa.Unicode(), nullable=True))
+
+    # ### end Alembic commands ###
+
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    with op.batch_alter_table("workspaces_long_quests", schema=None) as batch_op:
+        batch_op.drop_column("type")
+        batch_op.drop_column("url")
+
+    # ### end Alembic commands ###

alembic/versions/add6266277c7_.py

@@ -4,19 +4,21 @@
 class Settings(BaseSettings):
     """Application settings."""
 
-    PROJECT_NAME: str = "Hero API"
-    DATABASE_URL: str
+    PROJECT_NAME: str = "Workspaces API"
+    DATABASE_URL: str = "postgresql+asyncpg://user:pass@localhost:5432/dbname"
     DEBUG: bool = False
 
+    WS_LONGFORM_SCHEMA_URL: str = "https://raw.githubusercontent.com/TaskarCenterAtUW/asr-imagery-list/refs/heads/main/schema/schema.json"
+    WS_OSM_HOST: str = "https://osm.workspaces-dev.sidewalks.washington.edu"
+
     # JWT Settings
-    JWT_SECRET: str  # Change in production
+    JWT_SECRET: str = "your-secret-key" 
     JWT_ALGORITHM: str = "HS256"
-    JWT_EXPIRATION: int = 30  # minutes
+    JWT_EXPIRATION: int = 24 * 60 # 1d
 
     model_config = SettingsConfigDict(
         env_file=".env",
         env_file_encoding="utf-8",
     )
 
-
 settings = Settings()

alembic/versions/ef2910566747_add_users_table.py

@@ -12,7 +12,6 @@
 # Create declarative base for models
 Base = declarative_base()
 
-
 async def get_session() -> AsyncSession:
     """Dependency for getting async database session.
 

api/core/config.py

@@ -1,63 +1,65 @@
-from datetime import datetime, timedelta
-
 from fastapi import Depends, HTTPException, status
-from fastapi.security import OAuth2PasswordBearer
+from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer
+import httpx
+import json
+import os
 from jose import JWTError, jwt
-from passlib.context import CryptContext
-
-from api.core.config import settings
-
-# Password hashing context
-pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
-
-# OAuth2 scheme for token authentication
-oauth2_scheme = OAuth2PasswordBearer(tokenUrl="auth/login")
-
-
-def verify_password(plain_password: str, hashed_password: str) -> bool:
-    """Verify a password against its hash."""
-    return pwd_context.verify(plain_password, hashed_password)
 
+security = HTTPBearer()
+class UserInfo:
+    scheme: str
+    credentials: str
+    projectGroups: list[str]
 
-def get_password_hash(password: str) -> str:
-    """Generate password hash."""
-    return pwd_context.hash(password)
-
-
-def create_access_token(data: dict, expires_delta: timedelta | None = None) -> str:
-    """Create JWT access token."""
-    to_encode = data.copy()
-    expire = datetime.utcnow() + (
-        expires_delta or timedelta(minutes=settings.JWT_EXPIRATION)
-    )
-    to_encode.update({"exp": expire})
-    return jwt.encode(to_encode, settings.JWT_SECRET, algorithm=settings.JWT_ALGORITHM)
-
-
-async def get_current_user(token: str = Depends(oauth2_scheme)):
+async def validate_token(credentials: HTTPAuthorizationCredentials = Depends(security)) -> UserInfo:
     """Dependency to get current authenticated user."""
+
     credentials_exception = HTTPException(
         status_code=status.HTTP_401_UNAUTHORIZED,
         detail="Invalid authentication credentials",
         headers={"WWW-Authenticate": "Bearer"},
     )
 
     try:
-        payload = jwt.decode(
-            token, settings.JWT_SECRET, algorithms=[settings.JWT_ALGORITHM]
-        )
-        user_id: str = payload.get("sub")
+        # FIXME: verify signature of JWT token
+        payload = jwt.get_unverified_claims(credentials.credentials)
+        user_id: str | None = payload.get("sub")
         if user_id is None:
             raise credentials_exception
+
     except JWTError:
         raise credentials_exception
 
-    # Import here to avoid circular imports
-    from api.core.database import get_session
-    from api.src.users.service import UserService
+    async with httpx.AsyncClient() as client:
+            headers = {
+                'Authorization': 'Bearer ' + credentials.credentials,
+                'Content-Type': 'application/json',
+            }
+
+            authorizationUrl = os.environ.get("TM_TDEI_BACKEND_URL", "https://portal-api-dev.tdei.us/api/v1/") + "/project-group-roles/" + user_id + "?page_no=1&page_size=50"
+            response = await client.get(authorizationUrl, headers=headers)
+
+            # token is not valid or server unavailable
+            if response.status_code != 200:
+                raise credentials_exception
+
+            try:
+                content = response.read()
+                j = json.loads(content)
+            except json.JSONDecodeError:
+                raise credentials_exception
+
+            pgs = []
+            for i in j: 
+                pgs.append(i["tdei_project_group_id"])
+
+    r = UserInfo()
+    r.scheme = credentials.scheme
+    r.credentials = credentials.credentials
+    r.projectGroups = pgs
+
+    return r
+
+
+
 
-    async for session in get_session():
-        user = await UserService(session).get_user(int(user_id))
-        if user is None:
-            raise credentials_exception
-        return user