yezz123
diff --git a/‎examples/README.md
+55 b/‎examples/README.md
+55
diff --git a/‎examples/examples/__init__.py
+3 b/‎examples/examples/__init__.py
+3
diff --git a/‎examples/examples/basic_auth.py
+93 b/‎examples/examples/basic_auth.py
+93
diff --git a/‎examples/examples/fresh_token.py
+142 b/‎examples/examples/fresh_token.py
+142
@@ -0,0 +1,55 @@
+# AuthX Examples
+
+Simple examples showing how to use AuthX with FastAPI for authentication and authorization.
+
+## Installation
+
+```bash
+uv sync
+```
+
+## Available Examples
+
+1. **Basic Authentication** (`basic_auth_example.py`)
+   - JWT token authentication
+   - Protected routes
+
+2. **Refresh Tokens** (`refresh_token_example.py`)
+   - Access and refresh token handling
+   - Token refresh flow
+
+3. **Token Blocklist** (`token_blocklist_example.py`)
+   - Token revocation
+   - Logout functionality
+
+4. **Token Locations** (`token_locations_example.py`)
+   - Authorization headers
+   - Cookies
+   - Request body
+   - Query parameters
+
+5. **Fresh Tokens** (`fresh_token_example.py`)
+   - Fresh vs non-fresh tokens
+   - Sensitive operations protection
+
+## Running Examples
+
+1. Start an example:
+
+   ```bash
+   python example_name.py
+   ```
+
+2. Access the API docs:
+   - Open <http://localhost:8000/docs>
+   - Test endpoints through the interactive UI
+
+## Note
+
+These examples are for demonstration purposes. For production use:
+
+- Use environment variables for secrets
+- Enable HTTPS
+- Implement proper database storage
+
+For more details, visit [AuthX Documentation](https://authx.yezz.me/)
@@ -0,0 +1,3 @@
+"""Examples of using AuthX."""
+
+__version__ = "0.1.0"
@@ -0,0 +1,93 @@
+from fastapi import FastAPI, HTTPException, Request
+from pydantic import BaseModel
+
+from authx import AuthX, AuthXConfig
+
+# Create a FastAPI app
+app = FastAPI(title="AuthX Basic Authentication Example")
+
+# Configure AuthX
+auth_config = AuthXConfig(
+    JWT_ALGORITHM="HS256",
+    JWT_SECRET_KEY="your-secret-key",  # In production, use a secure key and store it in environment variables
+    JWT_TOKEN_LOCATION=["headers"],  # Accept tokens in headers
+    JWT_HEADER_TYPE="Bearer",  # Use Bearer authentication
+)
+
+# Initialize AuthX
+auth = AuthX(config=auth_config)
+
+# Register error handlers
+auth.handle_errors(app)
+
+
+# Define a user model for login
+class User(BaseModel):
+    username: str
+    password: str
+
+
+# Sample user database (in a real app, you would use a database)
+USERS = {
+    "user1": {"password": "password1", "email": "user1@example.com"},
+    "user2": {"password": "password2", "email": "user2@example.com"},
+}
+
+
+@app.post("/login")
+def login(user: User):
+    """Login endpoint that validates credentials and returns an access token."""
+    # Check if user exists and password is correct
+    if user.username in USERS and USERS[user.username]["password"] == user.password:
+        # Create an access token with the username as the subject
+        access_token = auth.create_access_token(user.username)
+        return {"access_token": access_token, "token_type": "bearer"}
+
+    # Return error if credentials are invalid
+    raise HTTPException(status_code=401, detail="Invalid username or password")
+
+
+@app.get("/protected")
+async def protected_route(request: Request):
+    """Protected route that requires a valid access token."""
+    try:
+        # Get the token from the request
+        token = await auth.get_token_from_request(request)
+
+        # Verify the token
+        payload = auth.verify_token(token)
+
+        # Get the username from the token subject
+        username = payload.sub
+
+        # Return user information
+        return {
+            "message": "You have access to this protected resource",
+            "username": username,
+            "email": USERS.get(username, {}).get("email"),
+        }
+    except Exception as e:
+        # Print the error for debugging
+        print(f"Authentication error: {str(e)}")
+        raise HTTPException(status_code=401, detail=str(e)) from e
+
+
+@app.get("/")
+def read_root():
+    """Public route that doesn't require authentication."""
+    return {
+        "message": "Welcome to AuthX Basic Authentication Example",
+        "endpoints": {
+            "login": "POST /login - Get an access token",
+            "protected": "GET /protected - Access protected resource (requires token)",
+        },
+    }
+
+
+if __name__ == "__main__":
+    import os
+
+    import uvicorn
+
+    port = int(os.environ.get("PORT", 8000))
+    uvicorn.run(app, host="0.0.0.0", port=port)
@@ -0,0 +1,142 @@
+from fastapi import FastAPI, HTTPException, Request
+from pydantic import BaseModel
+
+from authx import AuthX, AuthXConfig
+
+# Create a FastAPI app
+app = FastAPI(title="AuthX Fresh Token Example")
+
+# Configure AuthX
+auth_config = AuthXConfig(
+    JWT_ALGORITHM="HS256",
+    JWT_SECRET_KEY="your-secret-key",  # In production, use a secure key and store it in environment variables
+    JWT_TOKEN_LOCATION=["headers"],
+    JWT_HEADER_TYPE="Bearer",
+)
+
+# Initialize AuthX
+auth = AuthX(config=auth_config)
+
+# Register error handlers
+auth.handle_errors(app)
+
+
+# Define models
+class User(BaseModel):
+    username: str
+    password: str
+
+
+# Sample user database (in a real app, you would use a database)
+USERS = {
+    "user1": {"password": "password1", "email": "user1@example.com"},
+    "user2": {"password": "password2", "email": "user2@example.com"},
+}
+
+
+@app.post("/login")
+def login(user: User):
+    """Login endpoint that validates credentials and returns a fresh token."""
+    # Check if user exists and password is correct
+    if user.username in USERS and USERS[user.username]["password"] == user.password:
+        # Create a fresh token with the username as the subject
+        fresh_token = auth.create_access_token(user.username, fresh=True)
+        return {"fresh_token": fresh_token, "token_type": "bearer"}
+
+    # Return error if credentials are invalid
+    raise HTTPException(status_code=401, detail="Invalid username or password")
+
+
+@app.post("/refresh")
+async def refresh_token(request: Request):
+    """Refresh endpoint that creates a non-fresh token using a fresh token."""
+    try:
+        # Get the token from the request
+        token = await auth.get_token_from_request(request)
+
+        # Verify the token
+        payload = auth.verify_token(token)
+
+        # Create a non-fresh token
+        access_token = auth.create_access_token(payload.sub, fresh=False)
+
+        return {"access_token": access_token, "token_type": "bearer"}
+    except Exception as e:
+        print(f"Refresh error: {str(e)}")
+        raise HTTPException(status_code=401, detail=str(e)) from e
+
+
+@app.get("/protected")
+async def protected_route(request: Request):
+    """Protected route that requires a valid token (fresh or non-fresh)."""
+    try:
+        # Get the token from the request
+        token = await auth.get_token_from_request(request)
+
+        # Verify the token
+        payload = auth.verify_token(token)
+
+        # Get the username from the token subject
+        username = payload.sub
+
+        # Return user information
+        return {
+            "message": "You have access to this protected resource",
+            "username": username,
+            "email": USERS.get(username, {}).get("email"),
+            "fresh": payload.fresh,
+        }
+    except Exception as e:
+        print(f"Authentication error: {str(e)}")
+        raise HTTPException(status_code=401, detail=str(e)) from e
+
+
+@app.get("/fresh-required")
+async def fresh_required_route(request: Request):
+    """Protected route that requires a fresh token."""
+    try:
+        # Get the token from the request
+        token = await auth.get_token_from_request(request)
+
+        # Verify the token
+        payload = auth.verify_token(token)
+
+        # Check if the token is fresh
+        if not payload.fresh:
+            raise HTTPException(status_code=401, detail="Fresh token required")
+
+        # Get the username from the token subject
+        username = payload.sub
+
+        # Return user information
+        return {
+            "message": "You have access to this fresh-required resource",
+            "username": username,
+            "email": USERS.get(username, {}).get("email"),
+        }
+    except Exception as e:
+        print(f"Authentication error: {str(e)}")
+        raise HTTPException(status_code=401, detail=str(e)) from e
+
+
+@app.get("/")
+def read_root():
+    """Public route that doesn't require authentication."""
+    return {
+        "message": "Welcome to AuthX Fresh Token Example",
+        "endpoints": {
+            "login": "POST /login - Get a fresh token",
+            "refresh": "POST /refresh - Get a non-fresh token using a fresh token",
+            "protected": "GET /protected - Access protected resource (requires any token)",
+            "fresh-required": "GET /fresh-required - Access protected resource (requires fresh token)",
+        },
+    }
+
+
+if __name__ == "__main__":
+    import os
+
+    import uvicorn
+
+    port = int(os.environ.get("PORT", 8000))
+    uvicorn.run(app, host="0.0.0.0", port=port)
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+"""Examples of using AuthX."""`
	`2`	`+`
	`3`	`+__version__ = "0.1.0"`