explainx.ainewsletter3.02k
Backend

fastapi-expert

jeffallan/claude-skills · updated Apr 26, 2026

$npx skills add https://github.com/jeffallan/claude-skills --skill fastapi-expert
0 commentsdiscussion
summary

Production-grade async Python REST APIs with FastAPI, Pydantic V2, and SQLAlchemy async operations.

  • Covers REST endpoint design, Pydantic V2 schema validation, async database CRUD, and dependency injection patterns
  • Includes JWT authentication, OAuth2 flows, and authorization strategies with secure token management
  • Provides WebSocket endpoint setup, OpenAPI/Swagger documentation generation, and async testing with pytest and httpx
  • Enforces type hints, async/await patterns, and prope
skill.md

FastAPI Expert

Deep expertise in async Python, Pydantic V2, and production-grade API development with FastAPI.

When to Use This Skill

  • Building REST APIs with FastAPI
  • Implementing Pydantic V2 validation schemas
  • Setting up async database operations
  • Implementing JWT authentication/authorization
  • Creating WebSocket endpoints
  • Optimizing API performance

Core Workflow

  1. Analyze requirements — Identify endpoints, data models, auth needs
  2. Design schemas — Create Pydantic V2 models for validation
  3. Implement — Write async endpoints with proper dependency injection
  4. Secure — Add authentication, authorization, rate limiting
  5. Test — Write async tests with pytest and httpx; run pytest after each endpoint group and verify OpenAPI docs at /docs

Checkpoint after each step: confirm schemas validate correctly, endpoints return expected HTTP status codes, and /docs reflects the intended API surface before proceeding.

Minimal Complete Example

Schema + endpoint + dependency injection in one cohesive unit:

# schemas.py
from pydantic import BaseModel, EmailStr, field_validator, model_config

class UserCreate(BaseModel):
    model_config = model_config(str_strip_whitespace=True)

    email: EmailStr
    password: str
    name: str | None = None

    @field_validator("password")
    @classmethod
    def password_strength(cls, v: str) -> str:
        if len(v) < 8:
            raise ValueError("Password must be at least 8 characters")
        return v

class UserResponse(BaseModel):
    model_config = model_config(from_attributes=True)

    id: int
    email: EmailStr
    name: str | None = None

# routers/users.py
from fastapi import APIRouter, Depends, HTTPException, status
from sqlalchemy.ext.asyncio import AsyncSession
from typing import Annotated

from app.database import get_db
from app.schemas import UserCreate, UserResponse
from app import crud

router = APIRouter(prefix="/users", tags=["users"])

DbDep = Annotated[AsyncSession, Depends(get_db)]

@router.post("/", response_model=UserResponse, status_code=status.HTTP_201_CREATED)
async def create_user(payload: UserCreate, db: DbDep) -> UserResponse:
    existing = await crud.get_user_by_email(db, payload.email)
    if existing:
        raise HTTPException(status_code=status.HTTP_409_CONFLICT, detail="Email already registered")
    return await crud.create_user(db, payload)

# crud.py
from sqlalchemy import select
from sqlalchemy.ext.asyncio import AsyncSession
from app.models import User
from app.schemas import UserCreate
from app.security import hash_password

async def get_user_by_email(db: AsyncSession, email: str) -> User | None:
    result = await db.execute(select(User).where(User.email == email))
    return result.scalar_one_or_none()

async def create_user(db: AsyncSession, payload: UserCreate) -> User:
    user = User(email=payload.email, hashed_password=hash_password(payload.password), name=payload.name)
    db.add(user)
    await db.commit()
    await db.refresh(user)
    return user

JWT Authentication Snippet

# security.py
from datetime import datetime, timedelta, timezone
from jose import JWTError, jwt
from fastapi import Depends, HTTPException, status
from fastapi.security import OAuth2PasswordBearer
from typing import Annotated

SECRET_KEY = "read-from-env"  # use os.environ / settings
ALGORITHM = "HS256"
oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/auth/token")

def create_access_token(subject: str, expires_delta: timedelta = timedelta(minutes=30)) -> str:
    payload = {"sub": subject, "exp": datetime.now(timezone.utc) + expires_delta}
    return jwt.encode(payload, SECRET_KEY, algorithm=ALGORITHM)

async def get_current_user(token: Annotated[str, Depends(oauth2_scheme)]) -> str:
    try:
        data = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM])
        subject: str | None = data.get("sub")
        if subject is None:
            raise ValueError
        return subject
    except (JWTError, ValueError):
        raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid credentials")

CurrentUser = Annotated[str, Depends(get_current_user)]

Reference Guide

Load detailed guidance based on context:

Topic Reference Load When
Pydantic V2 references/pydantic-v2.md Creating schemas, validation, model_config
SQLAlchemy references/async-sqlalchemy.md Async database, models, CRUD operations
Endpoints references/endpoints-routing.md APIRouter, dependencies, routing
Authentication references/authentication.md JWT, OAuth2, get_current_user
Testing references/testing-async.md pytest-asyncio, httpx, fixtures
Django Migration references/migration-from-django.md Migrating from Django/DRF to FastAPI

Constraints

MUST DO

  • Use type hints everywhere (FastAPI requires them)
  • Use Pydantic V2 syntax (field_validator, model_validator, model_config)
  • Use Annotated pattern for dependency injection
  • Use async/await for all I/O operations
  • Use X | None instead of Optional[X]
  • Return proper HTTP status codes
  • Document endpoints (auto-generated OpenAPI)

MUST NOT DO

  • Use synchronous database operations
  • Skip Pydantic validation
  • Store passwords in plain text
  • Expose sensitive data in responses
  • Use Pydantic V1 syntax (@validator, class Config)
  • Mix sync and async code improperly
  • Hardcode configuration values

Output Templates

When implementing FastAPI features, provide:

  1. Schema file (Pydantic models)
  2. Endpoint file (router with endpoints)
  3. CRUD operations if database involved
  4. Brief explanation of key decisions

Knowledge Reference

FastAPI, Pydantic V2, async SQLAlchemy, Alembic migrations, JWT/OAuth2, pytest-asyncio, httpx, BackgroundTasks, WebSockets, dependency injection, OpenAPI/Swagger

Discussion

Product Hunt–style comments (not star reviews)
  • No comments yet — start the thread.
general reviews

Ratings

4.740 reviews
  • Yash Thakker· Dec 20, 2024

    Registry listing for fastapi-expert matched our evaluation — installs cleanly and behaves as described in the markdown.

  • Tariq Khan· Dec 12, 2024

    fastapi-expert reduced setup friction for our internal harness; good balance of opinion and flexibility.

  • Li Kim· Sep 17, 2024

    Useful defaults in fastapi-expert — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.

  • Chaitanya Patil· Sep 9, 2024

    Keeps context tight: fastapi-expert is the kind of skill you can hand to a new teammate without a long onboarding doc.

  • Daniel Shah· Sep 9, 2024

    Registry listing for fastapi-expert matched our evaluation — installs cleanly and behaves as described in the markdown.

  • Daniel Verma· Sep 5, 2024

    We added fastapi-expert from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.

  • Piyush G· Aug 28, 2024

    fastapi-expert has been reliable in day-to-day use. Documentation quality is above average for community skills.

  • Zaid Ndlovu· Aug 28, 2024

    fastapi-expert fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.

  • Zaid Lopez· Aug 24, 2024

    Solid pick for teams standardizing on skills: fastapi-expert is focused, and the summary matches what you get after install.

  • Li Mensah· Aug 8, 2024

    fastapi-expert is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.

showing 1-10 of 40

1 / 4