Update config env

.env

@@ -1,15 +1,19 @@
 # APP configuration
-APP_NAME="Flask API Rest Template"
-APP_ENV="develop"
+APP_NAME=Flask API Rest Template
+APP_ENV=develop
 
 # Flask Configuration
-FLASK_APP= "app:app"
-FLASK_DEBUG="true"
-APP_SETTINGS_MODULE="config.DevelopConfig"
-APP_TEST_SETTINGS_MODULE="config.TestingConfig"
-FLASK_RUN_HOST="0.0.0.0"
-FLASK_RUN_PORT="5000"
+FLASK_APP=app:app
+FLASK_DEBUG=true
+APP_SETTINGS_MODULE=config.DevelopConfig
+APP_TEST_SETTINGS_MODULE=config.TestingConfig
+FLASK_RUN_HOST=0.0.0.0
+FLASK_RUN_PORT=5000
+
+# Secret key
+SECRET_KEY=<your-secret-key>
+JWT_SECRET_KEY=<your-jwt-secret-key>
 
 # Database service configuration
-DATABASE_URL="postgresql://db_user:db_password@localhost/db_dev"
-DATABASE_TEST_URL="postgresql://db_user:db_password@localhost/db_test"
+DATABASE_URL=postgresql://db_user:db_password@localhost/db_dev
+DATABASE_TEST_URL=postgresql://db_user:db_password@localhost/db_test

.env.api.local

@@ -19,5 +19,9 @@ POSTGRES_DB=db_dev
 POSTGRES_USER=db_user
 PGPASSWORD=db_password
 
+# Secret key
+SECRET_KEY=<your-secret-key>
+JWT_SECRET_KEY=<your-jwt-secret-key>
+
 DATABASE_TEST_URL=postgresql+psycopg2://db_user:db_password@db_service:5432/db_test
 DATABASE_URL=postgresql+psycopg2://db_user:db_password@db_service:5432/db_dev

.env.pro

@@ -10,6 +10,10 @@ APP_SETTINGS_MODULE=config.ProductionConfig
 API_HOST=0.0.0.0
 API_PORT=5000
 
+# Secret key
+SECRET_KEY=<your-secret-key>
+JWT_SECRET_KEY=<your-jwt-secret-key>
+
 # Database service configuration
 DATABASE_URL=sqlite:///production.db
 

README.md

@@ -100,19 +100,23 @@ Development environment that uses PostgreSQL in local and uses the server flask
 3. Create or update **.env** file and enter the environment variables of the environment. Example:
 
    ```shell
-    # APP configuration
-    APP_NAME="Flask API Rest Template"
-    APP_ENV="develop"
-
-    # Flask Configuration
-    FLASK_APP= "app:app"
-    FLASK_DEBUG="true"
-    APP_SETTINGS_MODULE="config.DevelopConfig"
-    FLASK_RUN_HOST="0.0.0.0"
-    FLASK_RUN_PORT="5000"
-
-    # Database service configuration
-    DATABASE_URL="postgresql://db_user:db_password@localhost/db_dev"
+   # APP configuration
+   APP_NAME="Flask API Rest Template"
+   APP_ENV="develop"
+
+   # Flask Configuration
+   FLASK_APP= "app:app"
+   FLASK_DEBUG="true"
+   APP_SETTINGS_MODULE="config.DevelopConfig"
+   FLASK_RUN_HOST="0.0.0.0"
+   FLASK_RUN_PORT="5000"
+
+   # Secret key
+   SECRET_KEY=<your-secret-key>
+   JWT_SECRET_KEY=<your-jwt-secret-key>
+
+   # Database service configuration
+   DATABASE_URL="postgresql://db_user:db_password@localhost/db_dev"
    ```
 
 4. Run:
@@ -182,19 +186,23 @@ Testing environment that uses PostgreSQL as database (db_test) and performs unit
 3. Create or update **.env** file and enter the environment variables of the environment. Example:
 
    ```shell
-    # APP configuration
-    APP_NAME="Flask API Rest Template"
-    APP_ENV="testing"
-
-    # Flask Configuration
-    FLASK_APP= "app:app"
-    FLASK_DEBUG="true"
-    APP_SETTINGS_MODULE="config.TestingConfig"
-    FLASK_RUN_HOST="0.0.0.0"
-    FLASK_RUN_PORT="3000"
-
-    # Database service configuration
-    DATABASE_TEST_URL="postgresql://db_user:db_password@localhost/db_test"
+   # APP configuration
+   APP_NAME="Flask API Rest Template"
+   APP_ENV="testing"
+
+   # Flask Configuration
+   FLASK_APP= "app:app"
+   FLASK_DEBUG="true"
+   APP_SETTINGS_MODULE="config.TestingConfig"
+   FLASK_RUN_HOST="0.0.0.0"
+   FLASK_RUN_PORT="3000"
+
+   # Secret key
+   SECRET_KEY=<your-secret-key>
+   JWT_SECRET_KEY=<your-jwt-secret-key>
+
+   # Database service configuration
+   DATABASE_TEST_URL="postgresql://db_user:db_password@localhost/db_test"
    ```
 
 4. Init database:
@@ -276,6 +284,10 @@ Containerized services separately with PostgreSQL databases (db), API (api) and
       POSTGRES_USER=<name_user> # For example db_user
       PGPASSWORD=<password_user> # For example db_password
 
+      # Secret key
+      SECRET_KEY=<your-secret-key>
+      JWT_SECRET_KEY=<your-jwt-secret-key>
+
       DATABASE_TEST_URL=<url database test> # For example postgresql+psycopg2://db_user:db_password@db_service:5432/db_test
       DATABASE_URL=<url database> # For example postgresql+psycopg2://db_user:db_password@db_service:5432/db_dev
       ```
@@ -319,6 +331,10 @@ Apply CI/CD with Github Actions to automatically deployed to AWS platform use EC
       # API service configuration
       API_HOST=<api_host> # For example 0.0.0.0
 
+      # Secret key
+      SECRET_KEY=<your-secret-key>
+      JWT_SECRET_KEY=<your-jwt-secret-key>
+
       # Database service configuration
       DATABASE_URL=<url_database> # For example sqlite:///production.db
 
@@ -400,7 +416,7 @@ Apply CI/CD with Github Actions to automatically deployed to AWS platform use EC
 ## Swagger
 
 ```
-http://localhost:port/swagger-ui
+http://localhost:<port>/swagger-ui
 ```
 
 ## Reference

app/utils/decorators.py

@@ -12,22 +12,21 @@
 
 
 def permission_required(permission_name):
-    def decorator_function(original_function):
-        @wraps(original_function)
-        def wrapper_function(*arg, **kwargs):
+    def decorator(func):
+        def wrapper(*arg, **kwargs):
             jwt_data = get_jwt()
             user_id = jwt_data["sub"]
             user = UserModel.query.filter_by(id=user_id).first()
             for role in user.roles:
                 for permission in role.permissions:
                     if permission.name == permission_name:
-                        return original_function(*arg, **kwargs)
-            logger.error("User does not have permission to access this api!")
-            abort(403, message="User does not have permission to access this api!")
+                        return func(*arg, **kwargs)
+            logger.error("User does not have permission to access this API!")
+            abort(403, message="User does not have permission to access this API!")
 
-        return wrapper_function
+        return wrapper
 
-    return decorator_function
+    return decorator
 
 
 def time_profiling(func):

config.py

@@ -12,18 +12,13 @@ class DefaultConfig:
 
     # Flask Configuration
     APP_NAME = os.environ.get("APP_NAME")
-    SECRET_KEY = os.environ.get(
-        "SECRET_KEY", "e42ebf32a22c7cef7f4a33c71f90f0d8ea65e63144f952e57e1b39b26cc26a6f"
-    )
+    SECRET_KEY = os.environ.get("SECRET_KEY")
     PROPAGATE_EXCEPTIONS = True
     DEBUG = False
     TESTING = False
 
     # Configuration of Flask-JWT-Extended
-    JWT_SECRET_KEY = os.environ.get(
-        "JWT_SECRET_KEY",
-        "d7da6e940725de5a15b7e48f5a71f535a315c72a5372c1d3bb8691b38b5f29a1",
-    )
+    JWT_SECRET_KEY = os.environ.get("JWT_SECRET_KEY")
     # Determines the minutes that the access token remains active
     JWT_ACCESS_TOKEN_EXPIRES = datetime.timedelta(minutes=30)
     # Determines the days that the refresh token remains active