Initial commit

Author: Uttam Adhikari

.gitignore

@@ -0,0 +1,4 @@
+__pycache__/
+.env
+node_modules/
+backend/app/uploads/

README.md

@@ -0,0 +1,3 @@
+# FAT-EIBL — Finance Audit Tracker
+
+Scaffold with AI (Vani) and features.

backend/.env.example

@@ -0,0 +1,14 @@
+DATABASE_URL=postgresql+psycopg2://fatuser:fatpass@postgres:5432/fatdb
+SECRET_KEY=replace-with-a-secure-secret
+ACCESS_TOKEN_EXPIRE_MINUTES=60
+UPLOAD_DIR=/app/uploads
+DEFAULT_ADMIN_EMAIL=[email protected]
+DEFAULT_ADMIN_PASSWORD=123
+EMAIL_FROM=[email protected]
+SMTP_HOST=smtp.example.com
+SMTP_PORT=587
+SMTP_USER=
+SMTP_PASS=
+OPENAI_API_KEY=
+OPENAI_MODEL=gpt-4o-mini
+OPENAI_TEMPERATURE=0.2

backend/Dockerfile

@@ -0,0 +1,6 @@
+FROM python:3.11-slim
+WORKDIR /app
+COPY requirements.txt ./
+RUN pip install --no-cache-dir -r requirements.txt
+COPY . /app
+CMD ["uvicorn", "app.main:app", "--host", "0.0.0.0", "--port", "8000"]

backend/app/__init__.py

@@ -0,0 +1,11 @@
+from .database import SessionLocal
+from .models import AuditLog
+
+def record_audit(actor: str, action: str, resource: str = None, summary: str = None, payload: dict = None):
+    db = SessionLocal()
+    try:
+        log = AuditLog(actor=actor, action=action, resource=resource, summary=summary, payload=payload)
+        db.add(log)
+        db.commit()
+    finally:
+        db.close()

backend/app/audit.py

@@ -0,0 +1,37 @@
+from fastapi import Depends, HTTPException, status
+from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
+from jose import jwt, JWTError
+import os
+from .database import SessionLocal
+from . import models
+
+security = HTTPBearer()
+
+def get_current_username_from_token(token: str):
+    secret = os.getenv('SECRET_KEY', 'dev-secret')
+    try:
+        payload = jwt.decode(token, secret, algorithms=['HS256'])
+        return payload.get('sub')
+    except JWTError:
+        return None
+
+def get_current_user(credentials: HTTPAuthorizationCredentials = Depends(security)):
+    token = credentials.credentials
+    username = get_current_username_from_token(token)
+    if not username:
+        raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token")
+    db = SessionLocal()
+    user = db.query(models.User).filter(models.User.username == username).first()
+    db.close()
+    if not user:
+        raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="User not found")
+    return user
+
+def require_roles(*roles):
+    def _require(user = Depends(get_current_user)):
+        user_roles = [r.name for r in getattr(user, 'roles', [])]
+        for r in roles:
+            if r in user_roles:
+                return user
+        raise HTTPException(status_code=403, detail="Insufficient role")
+    return _require

backend/app/auth_utils.py

@@ -0,0 +1,38 @@
+from sqlalchemy.orm import Session
+from . import models, schemas
+from .security import hash_password, verify_password
+
+def create_user(db: Session, user: schemas.UserCreate):
+    hashed = hash_password(user.password)
+    db_user = models.User(username=user.username, hashed_password=hashed, role=user.role)
+    db.add(db_user)
+    db.commit()
+    db.refresh(db_user)
+    return db_user
+
+def get_user_by_username(db: Session, username: str):
+    return db.query(models.User).filter(models.User.username==username).first()
+
+def authenticate_user(db: Session, username: str, password: str):
+    user = get_user_by_username(db, username)
+    if not user:
+        return None
+    if not verify_password(password, user.hashed_password):
+        return None
+    return user
+
+def create_audit_request(db: Session, req: schemas.AuditRequestCreate, filename: str | None = None):
+    db_req = models.AuditRequest(
+        title=req.title,
+        description=req.description,
+        owner=req.owner,
+        due_date=req.due_date,
+        attachment=filename,
+    )
+    db.add(db_req)
+    db.commit()
+    db.refresh(db_req)
+    return db_req
+
+def list_audit_requests(db: Session, skip: int = 0, limit: int = 100):
+    return db.query(models.AuditRequest).offset(skip).limit(limit).all()

backend/app/crud.py

@@ -0,0 +1,19 @@
+from sqlalchemy import create_engine
+from sqlalchemy.ext.declarative import declarative_base
+from sqlalchemy.orm import sessionmaker
+import os
+from dotenv import load_dotenv
+
+load_dotenv()
+DATABASE_URL = os.getenv('DATABASE_URL')
+
+engine = create_engine(DATABASE_URL)
+SessionLocal = sessionmaker(autocommit=False, autoflush=False, bind=engine)
+Base = declarative_base()
+
+def get_db():
+    db = SessionLocal()
+    try:
+        yield db
+    finally:
+        db.close()

backend/app/database.py

@@ -0,0 +1,31 @@
+from fastapi import FastAPI
+from fastapi.staticfiles import StaticFiles
+from fastapi.openapi.docs import get_swagger_ui_html
+from .database import engine, Base
+from .routes import auth, audit_requests, imports, reports, ai, seed, roles, audit_logs
+from .scheduler import start_scheduler
+
+Base.metadata.create_all(bind=engine)
+
+app = FastAPI(title="FAT-EIBL")
+
+app.mount('/static', StaticFiles(directory='static'), name='static')
+
+app.include_router(auth.router)
+app.include_router(audit_requests.router)
+app.include_router(imports.router)
+app.include_router(reports.router)
+app.include_router(ai.router)
+app.include_router(seed.router)
+app.include_router(roles.router)
+app.include_router(audit_logs.router)
+
+start_scheduler()
+
+@app.get('/')
+def root():
+    return {'message': 'FAT-EIBL - API'}
+
+@app.get('/docs', include_in_schema=False)
+def custom_swagger_ui_html():
+    return get_swagger_ui_html(openapi_url=app.openapi_url, title=app.title + ' - Docs', swagger_favicon_url='/static/logo.svg')