FastAPI ya bayar da kayan aiki masu tsari (OAuth2PasswordBearer, security utilities) don aiwatar da authentication, wanda yawanci ake amfani da shi tare da OAuth2 password flow tare da JWT tokens. Tsarin ya haɗa tokenization (login) tare da dogaro wanda ya sallanta token a kan hanyoyi masu kariya.
Sana'ar passwords da fitar JWT a lokacin login
passlib.context CryptContext
jose jwt
datetime datetime, timedelta
pwd = CryptContext(schemes=[])
():
user = get_user(form.username)
user pwd.verify(form.password, user.hashed_password):
HTTPException(, )
token = jwt.encode(
{: user.username, : datetime.utcnow() + timedelta(minutes=)},
SECRET_KEY, algorithm=,
)
{: token, : }
