FastAPI Security Upgrade

Do you need an API security upgrade? Email me: inquire@automatedinnovations.com

​

Technologies: Python, FastAPI, MongoDB

​

Problem:

​

Client had an API written in FastAPI to help customers get data for an analytics dashboard and had some basic http security but was having difficulty upgrading to a better and more flexible security scheme. Client also wanted to support token-based access for API users but also protected login pages.  

​

Solution:

​

I designed a security regime based on JWT that extends FastAPI's OAuth2PasswordBearer and HTTPBearer which allowed users to access protected routes as well as data endpoints with scoping and access control.