โฑ๏ธ3 min read ยท 560 words
FastAPI is the fastest-growing Python web framework in 2026. Built on Starlette and Pydantic, it generates OpenAPI docs automatically, handles async natively, and performs at Node.js/Go speeds. This guide builds a complete REST API with authentication, database, and deployment.
๐ Table of Contents
Install and First Endpoint
pip install fastapi uvicorn sqlalchemy pydantic[email]# main.py
from fastapi import FastAPI
app = FastAPI(title='My API', version='1.0.0')
@app.get('/')
async def root():
return {'message': 'Hello FastAPI!'}
@app.get('/health')
async def health():
return {'status': 'ok'}uvicorn main:app --reload
# Docs at: http://localhost:8000/docsPydantic Models for Validation
from pydantic import BaseModel, EmailStr
from typing import Optional
class UserCreate(BaseModel):
name: str
email: EmailStr
age: int
class UserResponse(BaseModel):
id: int
name: str
email: str
model_config = {'from_attributes': True}CRUD Endpoints
from fastapi import HTTPException
# In-memory store for demo
users_db: dict[int, dict] = {}
counter = 0
@app.post('/users', response_model=UserResponse, status_code=201)
async def create_user(user: UserCreate):
global counter
counter += 1
users_db[counter] = {'id': counter, **user.model_dump()}
return users_db[counter]
@app.get('/users/{user_id}', response_model=UserResponse)
async def get_user(user_id: int):
if user_id not in users_db:
raise HTTPException(status_code=404, detail='User not found')
return users_db[user_id]
@app.put('/users/{user_id}', response_model=UserResponse)
async def update_user(user_id: int, user: UserCreate):
if user_id not in users_db:
raise HTTPException(status_code=404, detail='User not found')
users_db[user_id] = {'id': user_id, **user.model_dump()}
return users_db[user_id]
@app.delete('/users/{user_id}', status_code=204)
async def delete_user(user_id: int):
if user_id not in users_db:
raise HTTPException(status_code=404, detail='User not found')
del users_db[user_id]JWT Authentication
pip install python-jose[cryptography] passlib[bcrypt]from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
from jose import jwt
from passlib.context import CryptContext
from datetime import datetime, timedelta
SECRET_KEY = 'your-secret-key'
ALGORITHM = 'HS256'
pwd_ctx = CryptContext(schemes=['bcrypt'])
oauth2 = OAuth2PasswordBearer(tokenUrl='token')
def create_token(data: dict) -> str:
payload = data | {'exp': datetime.utcnow() + timedelta(hours=24)}
return jwt.encode(payload, SECRET_KEY, algorithm=ALGORITHM)
@app.post('/token')
async def login(form: OAuth2PasswordRequestForm = Depends()):
# Verify password here
token = create_token({'sub': form.username})
return {'access_token': token, 'token_type': 'bearer'}Background Tasks
from fastapi import BackgroundTasks
def send_welcome_email(email: str):
# runs after response is sent
print(f'Sending welcome to {email}')
@app.post('/register')
async def register(user: UserCreate, bg: BackgroundTasks):
# Create user in DB...
bg.add_task(send_welcome_email, user.email)
return {'status': 'registered'}Conclusion
FastAPI gives you auto-generated OpenAPI docs, type-safe request/response, async performance, and built-in auth patterns. It is the best Python web framework for APIs in 2026. Add SQLAlchemy or Tortoise ORM for database, deploy with Docker, and you have a production-ready API in hours.
๐ You might also like
๐ Share this article
โ๏ธ Leave a Comment