cloud-api/src/main.py

"""
Application root file: Inits the FastAPI application
"""

from contextlib import asynccontextmanager
from typing import AsyncGenerator

from fastapi import FastAPI
from starlette.middleware.sessions import SessionMiddleware
from starlette.middleware.cors import CORSMiddleware

from src.constants import Environment
from src.config import settings
from src.api import api_router

from src.auth.config import auth_settings
from src.auth.service import get_current_user, get_dev_user


@asynccontextmanager
async def lifespan(_application: FastAPI) -> AsyncGenerator:
	# Startup
	yield
	# Shutdown


if settings.ENVIRONMENT.is_deployed:
	# Just a precaution, should be False anyway
	settings.DISABLE_AUTH = False


tags_metadata = [
	{
		"name": "User",
		"description": "User related operations, includes getting information about the current user",
	},
	{
		"name": "Organisation",
		"description": "Organisation related operations, includes getting lists of users etc associated with orgs",
	},
	{
		"name": "Service",
		"description": "Services related operations, includes registering services and reissuing API keys",
	},
	{
		"name": "IAM",
		"description": "Operations related to the role based identity and access management system. This includes management of groups, permissions, and related users.",
	},
]


app = FastAPI(
	swagger_ui_init_oauth={
		"clientId": auth_settings.CLIENT_ID,
		"usePkceWithAuthorizationCodeGrant": True,
		"scopes": "openid profile email",
	},
	openapi_tags=tags_metadata,
)

# Type inspection disabled for middleware injection.
# Known bug in FastAPI type checking: https://github.com/astral-sh/ty/issues/1635
# noinspection PyTypeChecker
app.add_middleware(SessionMiddleware, secret_key=settings.SECRET_KEY.get_secret_value())
# noinspection PyTypeChecker
app.add_middleware(
	CORSMiddleware,
	allow_origins=settings.CORS_ORIGINS,
	allow_origin_regex=settings.CORS_ORIGINS_REGEX,
	allow_credentials=True,
	allow_methods=("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"),
	allow_headers=settings.CORS_HEADERS,
)

if settings.DISABLE_AUTH and (settings.ENVIRONMENT == Environment.LOCAL):
	app.dependency_overrides[get_current_user] = get_dev_user


app.include_router(api_router)
Initial commit 2026-04-06 12:41:49 +01:00			`"""`
			`Application root file: Inits the FastAPI application`
			`"""`
minor: ruff formatter All changes are either: - Correcting tabs - Adding/removing line breaks - Adding trailing commas 2026-06-08 15:31:37 +01:00
Initial commit 2026-04-06 12:41:49 +01:00			`from contextlib import asynccontextmanager`
			`from typing import AsyncGenerator`

			`from fastapi import FastAPI`
			`from starlette.middleware.sessions import SessionMiddleware`
			`from starlette.middleware.cors import CORSMiddleware`

feat: disable_auth also works in testing 2026-05-29 11:50:16 +01:00			`from src.constants import Environment`
Initial commit 2026-04-06 12:41:49 +01:00			`from src.config import settings`
			`from src.api import api_router`

			`from src.auth.config import auth_settings`
feat: auth bypass for dev and testing ENVIRONMENT must be "local" and DISABLE_AUTH set for this to be active. Both of these default to production values to prevent this being enabled accidentally. Resolves #5 2026-05-26 11:42:49 +01:00			`from src.auth.service import get_current_user, get_dev_user`
Initial commit 2026-04-06 12:41:49 +01:00

			`@asynccontextmanager`
			`async def lifespan(_application: FastAPI) -> AsyncGenerator:`
			`# Startup`
			`yield`
			`# Shutdown`


			`if settings.ENVIRONMENT.is_deployed:`
feat: auth bypass for dev and testing ENVIRONMENT must be "local" and DISABLE_AUTH set for this to be active. Both of these default to production values to prevent this being enabled accidentally. Resolves #5 2026-05-26 11:42:49 +01:00			`# Just a precaution, should be False anyway`
			`settings.DISABLE_AUTH = False`
Initial commit 2026-04-06 12:41:49 +01:00

docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`tags_metadata = [`
			`{`
			`"name": "User",`
			`"description": "User related operations, includes getting information about the current user",`
docs: service router details 2026-05-28 15:25:29 +01:00			`},`
docs: iam module meta doc 2026-06-11 13:07:48 +01:00			`{`
			`"name": "Organisation",`
			`"description": "Organisation related operations, includes getting lists of users etc associated with orgs",`
			`},`
docs: service router details 2026-05-28 15:25:29 +01:00			`{`
			`"name": "Service",`
			`"description": "Services related operations, includes registering services and reissuing API keys",`
			`},`
docs: org router tag metadata Issue: #13 2026-05-28 16:46:44 +01:00			`{`
docs: iam module meta doc 2026-06-11 13:07:48 +01:00			`"name": "IAM",`
			`"description": "Operations related to the role based identity and access management system. This includes management of groups, permissions, and related users.",`
docs: org router tag metadata Issue: #13 2026-05-28 16:46:44 +01:00			`},`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`]`


Initial commit 2026-04-06 12:41:49 +01:00			`app = FastAPI(`
			`swagger_ui_init_oauth={`
			`"clientId": auth_settings.CLIENT_ID,`
			`"usePkceWithAuthorizationCodeGrant": True,`
			`"scopes": "openid profile email",`
docs: user module In-line and Swagger docs improvements on the User module and endpoints 2026-05-20 15:23:40 +01:00			`},`
			`openapi_tags=tags_metadata,`
Initial commit 2026-04-06 12:41:49 +01:00			`)`

minor: cleanup Minor tweaks to reduce warnings in IDE e.g. unused imports. 2026-05-19 12:10:06 +01:00			`# Type inspection disabled for middleware injection.`
			`# Known bug in FastAPI type checking: https://github.com/astral-sh/ty/issues/1635`
			`# noinspection PyTypeChecker`
Initial commit 2026-04-06 12:41:49 +01:00			`app.add_middleware(SessionMiddleware, secret_key=settings.SECRET_KEY.get_secret_value())`
minor: cleanup Minor tweaks to reduce warnings in IDE e.g. unused imports. 2026-05-19 12:10:06 +01:00			`# noinspection PyTypeChecker`
Initial commit 2026-04-06 12:41:49 +01:00			`app.add_middleware(`
			`CORSMiddleware,`
			`allow_origins=settings.CORS_ORIGINS,`
			`allow_origin_regex=settings.CORS_ORIGINS_REGEX,`
			`allow_credentials=True,`
			`allow_methods=("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"),`
			`allow_headers=settings.CORS_HEADERS,`
			`)`

tests: test init 2026-05-29 15:18:10 +01:00			`if settings.DISABLE_AUTH and (settings.ENVIRONMENT == Environment.LOCAL):`
feat: auth bypass for dev and testing ENVIRONMENT must be "local" and DISABLE_AUTH set for this to be active. Both of these default to production values to prevent this being enabled accidentally. Resolves #5 2026-05-26 11:42:49 +01:00			`app.dependency_overrides[get_current_user] = get_dev_user`


Initial commit 2026-04-06 12:41:49 +01:00			`app.include_router(api_router)`