Add community role atribute. Comunity orm fucntions and Admin route.

IkeSalmonson · IkeSalmonson · commit 51d64decf5a2 · 2025-09-30T21:34:00.000-03:00
diff --git a/app/main.py b/app/main.py
@@ -4,6 +4,7 @@
 from fastapi import FastAPI
 from slowapi import _rate_limit_exceeded_handler
 
+from app.routers.admin.admin import create_community_admin
 from app.routers.router import setup_router as setup_router_v2
 from app.services.database.database import AsyncSessionLocal, init_db
 from app.services.limiter import limiter
@@ -16,6 +17,7 @@ async def lifespan(app: FastAPI):
     # add check db file and create if not found
     await init_db()
     app.db_session_factory = AsyncSessionLocal()
+    await create_community_admin(app.db_session_factory)
     try:
         yield
     finally:
diff --git a/app/routers/admin/__init__.py b/app/routers/admin/__init__.py
diff --git a/app/routers/admin/admin.py b/app/routers/admin/admin.py
@@ -0,0 +1,66 @@
+import os
+from typing import Annotated
+
+from fastapi import APIRouter, Depends, Request, status
+from pydantic import BaseModel
+from sqlmodel.ext.asyncio.session import AsyncSession
+
+from app.routers.authentication import get_current_active_community
+from app.services import auth
+from app.services.database.models import Community as DBCommunity  # Precisa?
+from app.services.database.orm.community import create_community
+
+# ADMIN_USER = os.getenv("ADMIN_USER")
+# ADMIN_PASSWORD = os.getenv("ADMIN_PASSWORD")
+
+
+async def create_community_admin(session: AsyncSession):
+    ADMIN_USER = os.getenv("ADMIN_USER")
+    ADMIN_PASSWORD = os.getenv("ADMIN_PASSWORD")
+    password = ADMIN_PASSWORD
+    hashed_password = auth.hash_password(password)
+    community = DBCommunity(
+        username=ADMIN_USER,
+        email="ADMIN_USER",
+        password=hashed_password,
+        role="admin",
+    )
+    session: AsyncSession = session
+    session.add(community)
+    await session.commit()
+    await session.refresh(community)
+    return {"msg": "Admin successfully created"}
+
+
+class CommunityPostResponse(BaseModel):
+    status: str = "Community Criado"
+
+
+def setup():
+    router = APIRouter(prefix="/admin", tags=["news"])
+
+    @router.post(
+        "create_community",
+        response_model=CommunityPostResponse,
+        status_code=status.HTTP_200_OK,
+        summary="Create Community endpoint",
+        description="Create Community and returns a confirmation message",
+    )
+    async def post_create_community(
+        request: Request,
+        admin_community: Annotated[
+            DBCommunity, Depends(get_current_active_community)
+        ],
+        community: Annotated[DBCommunity],
+    ):
+        """
+        Server Admin endpoint that creates Community and returns a confirmation message.
+        """
+        admin_role = admin_community.get("role")
+        if admin_role != "admin":
+            return {"status": "Unauthorized"}
+        await create_community(
+            session=request.app.db_session_factory, community=community
+        )
+
+        return CommunityPostResponse()
diff --git a/app/services/database/models/communities.py b/app/services/database/models/communities.py
@@ -11,6 +11,7 @@ class Community(SQLModel, table=True):
     username: str
     email: str
     password: str
+    role: str = Field(default="user")
     created_at: Optional[datetime] = Field(default_factory=datetime.now)
     updated_at: Optional[datetime] = Field(
         default_factory=datetime.now,
diff --git a/app/services/database/orm/community.py b/app/services/database/orm/community.py
@@ -1,5 +1,6 @@
 from typing import Optional
 
+from fastapi import Request
 from sqlmodel import select
 from sqlmodel.ext.asyncio.session import AsyncSession
 
@@ -22,3 +23,19 @@ async def get_community_by_username(
     community = result.first()
 
     return community
+
+
+async def create_community(
+    request: Request,
+    community: Community,  # community model
+) -> Optional[Community]:
+    """
+    Cria um novo membro da comunidade.
+    Somente usuário autenticado e com role Admin podem executar.
+    """
+    session: AsyncSession = request.app.db_session_factory
+    session.add(community)
+    await session.commit()
+    await session.refresh(community)
+
+    return community
diff --git a/docker-compose.yaml b/docker-compose.yaml
@@ -15,6 +15,8 @@ services:
       - SQLITE_URL=sqlite+aiosqlite://
       - SECRET_KEY=1a6c5f3b7d2e4a7fb68d0casd3f9a7b2d8c4e5f6a3b0d4e9c7a8f1b6d3c0a7f5e
       - ENCRYPTION_KEY=smR739opNB9FJ4hEm5ZIG8Gr-Qnvqtem4ehwl4RIUes=
+      - ADMIN_USER=admin
+      - ADMIN_PASSWORD=admin
       - ALGORITHM=HS256
       - ACCESS_TOKEN_EXPIRE_MINUTES=20
     restart: unless-stopped
diff --git a/poetry.lock b/poetry.lock
