add config and env variables for AWS credentials

Author: rbuels

.env

@@ -43,3 +43,8 @@ SENTRY_DSN=
 # Configure these with your own Docker registry images
 DOCKER_IMAGE_BACKEND=backend
 DOCKER_IMAGE_FRONTEND=frontend
+
+AWS_ACCESS_KEY_ID=fake-access-key-changethis
+AWS_SECRET_ACCESS_KEY=fake-secret-key-changethis
+AWS_REGION=us-east-1
+AWS_S3_ATTACHMENTS_BUCKET=patient-attachments

backend/app/api/deps.py

@@ -1,6 +1,7 @@
 from collections.abc import Generator
 from typing import Annotated
 
+import boto3
 import jwt
 from fastapi import Depends, HTTPException, status
 from fastapi.security import OAuth2PasswordBearer
@@ -55,3 +56,11 @@ def get_current_active_superuser(current_user: CurrentUser) -> User:
             status_code=403, detail="The user doesn't have enough privileges"
         )
     return current_user
+
+# dependency for AWS SDK boto3 session
+aws_session = boto3.Session(
+    aws_access_key_id=settings.AWS_ACCESS_KEY_ID,
+    aws_secret_access_key=settings.AWS_SECRET_ACCESS_KEY,
+    region_name=settings.AWS_REGION,
+)
+AwsDep = Annotated[boto3.Session, Depends(lambda: aws_session)]

backend/app/core/config.py

@@ -95,6 +95,12 @@ def emails_enabled(self) -> bool:
     FIRST_SUPERUSER: EmailStr
     FIRST_SUPERUSER_PASSWORD: str
 
+    # configuration for AWS client
+    AWS_ACCESS_KEY_ID: str
+    AWS_SECRET_ACCESS_KEY: str
+    AWS_REGION: str
+    AWS_S3_ATTACHMENTS_BUCKET: str
+
     def _check_default_secret(self, var_name: str, value: str | None) -> None:
         if value == "changethis":
             message = (

docker-compose.yml

@@ -107,6 +107,10 @@ services:
       - POSTGRES_USER=${POSTGRES_USER?Variable not set}
       - POSTGRES_PASSWORD=${POSTGRES_PASSWORD?Variable not set}
       - SENTRY_DSN=${SENTRY_DSN}
+      - AWS_ACCESS_KEY_ID=${AWS_ACCESS_KEY_ID?Variable not set}
+      - AWS_SECRET_ACCESS_KEY=${AWS_SECRET_ACCESS_KEY?Variable not set}
+      - AWS_REGION=${AWS_REGION?Variable not set}
+      - AWS_S3_ATTACHMENTS_BUCKET=${AWS_S3_ATTACHMENTS_BUCKET?Variable not set}
 
     healthcheck:
       test: ["CMD", "curl", "-f", "http://localhost:8000/api/v1/utils/health-check/"]