intial db set up

Author: User

backend/DB_SETUP.md

@@ -0,0 +1,118 @@
+# Database Setup and Migrations
+
+This document explains how to set up the database and manage migrations for the Copilot backend.
+
+## Prerequisites
+
+- Python 3.8+
+- PostgreSQL 13+
+- pip
+- virtualenv (recommended)
+
+## Setup
+
+1. **Create a virtual environment** (recommended):
+   ```bash
+   python -m venv .venv
+   source .venv/bin/activate  # On Windows: .venv\Scripts\activate
+   ```
+
+2. **Install dependencies**:
+   ```bash
+   pip install -e ".[dev]"
+   ```
+
+3. **Set up environment variables**:
+   Copy `.env.example` to `.env` and update the values:
+   ```bash
+   cp .env.example .env
+   ```
+
+## Database Configuration
+
+Update the following environment variables in your `.env` file:
+
+```
+DATABASE_URL=postgresql://postgres:postgres@localhost:5432/copilot
+ASYNC_DATABASE_URL=postgresql+asyncpg://postgres:postgres@localhost:5432/copilot
+```
+
+## Running Migrations
+
+### Create a new migration
+
+To create a new migration after making changes to your models:
+
+```bash
+python -m scripts.migrate create --message "your migration message"
+```
+
+### Apply migrations
+
+To apply all pending migrations:
+
+```bash
+python -m scripts.migrate upgrade head
+```
+
+### Rollback a migration
+
+To rollback to a previous migration:
+
+```bash
+python -m scripts.migrate downgrade <revision>
+```
+
+### Show current migration
+
+To show the current migration:
+
+```bash
+python -m scripts.migrate current
+```
+
+### Show migration history
+
+To show the migration history:
+
+```bash
+python -m scripts.migrate history
+```
+
+## Initial Setup
+
+To set up the database and run all migrations:
+
+```bash
+./scripts/setup_db.sh
+```
+
+This will:
+1. Check if the database is accessible
+2. Run all pending migrations
+3. Create an initial admin user if it doesn't exist
+
+## Database Models
+
+The database models are defined in `app/models/`:
+
+- `base.py`: Base model classes and mixins
+- `user.py`: User-related models and schemas
+
+## Common Issues
+
+### Database Connection Issues
+
+If you encounter connection issues:
+
+1. Ensure PostgreSQL is running
+2. Check that the database exists and the user has the correct permissions
+3. Verify the connection string in your `.env` file
+
+### Migration Issues
+
+If you encounter issues with migrations:
+
+1. Make sure all models are properly imported in `app/models/__init__.py`
+2. Check for any syntax errors in your models
+3. If needed, you can delete the migration files in `app/alembic/versions/` and create a new initial migration

backend/alembic.ini

@@ -5,26 +5,26 @@
 script_location = app/alembic
 
 # template used to generate migration files
-# file_template = %%(rev)s_%%(slug)s
+file_template = %%(year)d_%%(month).2d_%%(day).2d_%%(hour).2d%%(minute).2d_%%(slug)s
 
 # timezone to use when rendering the date
 # within the migration file as well as the filename.
 # string value is passed to dateutil.tz.gettz()
 # leave blank for localtime
-# timezone =
+timezone = UTC
 
 # max length of characters to apply to the
 # "slug" field
-#truncate_slug_length = 40
+truncate_slug_length = 40
 
 # set to 'true' to run the environment during
 # the 'revision' command, regardless of autogenerate
-# revision_environment = false
+revision_environment = false
 
 # set to 'true' to allow .pyc and .pyo files without
 # a source .py file to be detected as revisions in the
 # versions/ directory
-# sourceless = false
+sourceless = false
 
 # version location specification; this defaults
 # to alembic/versions.  When using multiple version
@@ -33,7 +33,10 @@ script_location = app/alembic
 
 # the output encoding used when revision files
 # are written from script.py.mako
-# output_encoding = utf-8
+output_encoding = utf-8
+
+# Database connection string (overridden by env.py)
+sqlalchemy.url = postgresql://postgres:postgres@localhost:5432/copilot
 
 # Logging configuration
 [loggers]
@@ -46,18 +49,18 @@ keys = console
 keys = generic
 
 [logger_root]
-level = WARN
+level = INFO
 handlers = console
 qualname =
 
 [logger_sqlalchemy]
-level = WARN
-handlers =
+level = WARNING
+handlers = 
 qualname = sqlalchemy.engine
 
 [logger_alembic]
 level = INFO
-handlers =
+handlers = 
 qualname = alembic
 
 [handler_console]

backend/app/api/main.py

@@ -1,14 +1,20 @@
 from fastapi import APIRouter
 
 from app.api.routes import items, login, private, users, utils
+from app.api.routes.auth.router import router as auth_router
 from app.core.config import settings
 
 api_router = APIRouter()
-api_router.include_router(login.router)
-api_router.include_router(users.router)
-api_router.include_router(utils.router)
-api_router.include_router(items.router)
 
+# Include auth routes
+api_router.include_router(auth_router, prefix=settings.API_V1_STR)
 
+# Include other routes
+api_router.include_router(login.router, tags=["login"])
+api_router.include_router(users.router, prefix="/users", tags=["users"])
+api_router.include_router(utils.router, tags=["utils"])
+api_router.include_router(items.router, prefix="/items", tags=["items"])
+
+# Include private routes in local environment
 if settings.ENVIRONMENT == "local":
-    api_router.include_router(private.router)
+    api_router.include_router(private.router, tags=["private"])

backend/app/api/routes/auth/__init__.py

@@ -0,0 +1 @@
+# This file makes the auth directory a Python package

backend/app/api/routes/auth/auth.py

@@ -0,0 +1,139 @@
+from datetime import timedelta
+from typing import Any
+
+from fastapi import APIRouter, Depends, HTTPException, status
+from fastapi.security import OAuth2PasswordRequestForm
+from sqlmodel import Session
+
+from app.core import security
+from app.core.config import settings
+from app.db import get_db
+from app.models import User
+from app.schemas.auth import Token, UserLogin, UserRegister, UserOut, PasswordResetRequest, PasswordResetConfirm
+from app.crud import create_user, get_user_by_email, update_user
+
+router = APIRouter()
+
+@router.post("/signup", response_model=UserOut, status_code=status.HTTP_201_CREATED)
+def signup(
+    *,
+    db: Session = Depends(get_db),
+    user_in: UserRegister,
+) -> Any:
+    """
+    Create new user with email and password.
+    """
+    # Check if user with this email already exists
+    db_user = get_user_by_email(db, email=user_in.email)
+    if db_user:
+        raise HTTPException(
+            status_code=status.HTTP_400_BAD_REQUEST,
+            detail="The user with this email already exists in the system.",
+        )
+    
+    # Create new user
+    user = create_user(db, user_in)
+    
+    # TODO: Send verification email
+    
+    return user
+
+@router.post("/login", response_model=Token)
+def login(
+    db: Session = Depends(get_db),
+    form_data: OAuth2PasswordRequestForm = Depends(),
+) -> Any:
+    """
+    OAuth2 compatible token login, get an access token for future requests.
+    """
+    # Authenticate user
+    user = security.authenticate(
+        db, email=form_data.username, password=form_data.password
+    )
+    if not user:
+        raise HTTPException(
+            status_code=status.HTTP_400_BAD_REQUEST,
+            detail="Incorrect email or password",
+        )
+    
+    if not user.is_active:
+        raise HTTPException(
+            status_code=status.HTTP_400_BAD_REQUEST,
+            detail="Inactive user",
+        )
+    
+    # Generate tokens
+    tokens = security.generate_token_response(str(user.id))
+    
+    # Store refresh token in database
+    # TODO: Implement refresh token storage
+    
+    return tokens
+
+@router.post("/refresh", response_model=Token)
+def refresh_token(
+    refresh_token: str,
+    db: Session = Depends(get_db),
+) -> Any:
+    """
+    Refresh access token using a valid refresh token.
+    """
+    # Verify refresh token
+    try:
+        token_data = security.verify_refresh_token(refresh_token)
+    except HTTPException as e:
+        raise e
+    
+    # Get user
+    user = get_user(db, user_id=token_data["sub"])
+    if not user:
+        raise HTTPException(
+            status_code=status.HTTP_404_NOT_FOUND,
+            detail="User not found",
+        )
+    
+    # Generate new tokens
+    tokens = security.generate_token_response(str(user.id))
+    
+    # TODO: Update refresh token in database
+    
+    return tokens
+
+@router.post("/forgot-password", status_code=status.HTTP_202_ACCEPTED)
+def forgot_password(
+    password_reset: PasswordResetRequest,
+    db: Session = Depends(get_db),
+) -> Any:
+    """
+    Request password reset.
+    """
+    user = get_user_by_email(db, email=password_reset.email)
+    if not user:
+        # Don't reveal that the user doesn't exist
+        return {"message": "If your email is registered, you will receive a password reset link."}
+    
+    # TODO: Generate password reset token and send email
+    
+    return {"message": "If your email is registered, you will receive a password reset link."}
+
+@router.post("/reset-password", status_code=status.HTTP_200_OK)
+def reset_password(
+    reset_data: PasswordResetConfirm,
+    db: Session = Depends(get_db),
+) -> Any:
+    """
+    Reset password using a valid token.
+    """
+    # TODO: Verify reset token
+    # TODO: Update user password
+    
+    return {"message": "Password updated successfully"}
+
+@router.get("/me", response_model=UserOut)
+def read_users_me(
+    current_user: User = Depends(security.get_current_user),
+) -> Any:
+    """
+    Get current user.
+    """
+    return current_user