Skip to content

Sonic7002/LMS_API

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
app
app
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
LICENCE
LICENCE
 
 
README.md
README.md
 
 
main.py
main.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Library Management System API (LMS)

A backend-first Library Management System API built with FastAPI and SQLAlchemy, designed with real-world backend practices in mind: layered architecture, authentication, role-based access control, and clean separation of concerns.

This project intentionally focuses on backend correctness and design, not UI.

Deployed link

The API was previously deployed on Render.

The public instance is currently offline due to free-tier resource limits.
The project can still be run locally using the instructions provided below.

🚀 Features

Core Functionality

  • User management (create, list, retrieve)

  • Book management (create, update, list)

  • Loan management (issue, return, list loans)

  • SQLite-backed relational database using SQLAlchemy ORM

Authentication & Authorization

  • JWT-based authentication

  • OAuth2 password flow

  • Role-Based Access Control (RBAC)

    • Roles: ADMIN, LIBRARIAN, MEMBER

    • Access to endpoints restricted by role

  • Secure password hashing

Architecture Highlights

  • Clean layered structure:

    • API (routers)
    • Services (business logic)
    • Repositories (database access)
    • Schemas (request/response validation)
    • Models (SQLAlchemy ORM)

  • Dependency Injection using FastAPI Depends

  • UUID-based primary keys

  • Environment-based configuration using .env

🧱 Tech Stack

  • Python 3.12

  • FastAPI

  • SQLAlchemy 2.x

  • Neon (PostgeSQL)

  • Pydantic

  • JWT (python-jose)

  • OAuth2

  • Uvicorn

🔐 Roles & Permissions (RBAC)

  • ADMIN

    • Create users

    • Full access to system

  • LIBRARIAN

    • Manage books

    • Issue and return loans

  • MEMBER

    • View own profile

    • View available books

    • View own loans

Authorization is enforced using FastAPI dependencies, not inside route logic.

🗃 Database Design

  • Relational schema with proper foreign keys

  • UUIDs used as primary identifiers

  • Loan records track:

    • Issue date

    • Due date

    • Return date

  • Business state (e.g. overdue loans) is derived, not stored

⚙️ Environment Configuration

The application uses environment variables for configuration.

Example .env file:

DATABASE_URL=sqlite:///./lms.db
SECRET_KEY=DEVELOPMENT
ALGORITHM=HS256
ACCESS_TOKEN_EXPIRE_MINUTES=60

INITIAL_ADMIN_EMAIL=admin@example.com
INITIAL_ADMIN_PASSWORD=strongpassword

An initial admin account is auto-created if the database is empty.

▶️ Running the Project

1. Create a virtual environment

2. Install dependencies

3. Run the server:

fastapi run

Swagger UI available at:

http://localhost:8000/docs

🧠 Design Decisions

  • FastAPI over Flask for type safety, validation, and dependency injection

  • Service + Repository pattern to avoid fat routes

  • No hardcoded business states (e.g. overdue loans are computed)

  • SQLite first, PostgreSQL planned next (executed)

  • Focus on correctness over shortcuts

🚧 Future Improvements

  • Alembic migrations

  • Background jobs for policy enforcement

  • Account suspension automation

  • Penalty system for overdue loans

👤 Author

Srijan Kargupta (c) 2026

About

A RESTful Library Management System API made using FastAPI and implements SQL based database

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

v1.0.3 Latest
Jan 23, 2026
+ 1 release

Packages

 
 
 

Contributors

Languages