[Solved] What is wrong with this FastAPI role check code? async def role_check(user: User = Depends(get_current_user)): if 'admin' not in user.roles:... What is wrong with this FastAPI role check code? | FastAPI

FastAPI - Authentication and Security

What is wrong with this FastAPI role check code?

async def role_check(user: User = Depends(get_current_user)):
    if 'admin' not in user.roles:
        raise HTTPException(status_code=403)
    return true

@app.get('/admin')
async def admin_route(allowed=Depends(role_check)):
    if not allowed:
        return {'error': 'Access denied'}
    return {'msg': 'Welcome admin'}

AThe dependency should return false instead of raising exception

BThe user roles should be checked synchronously

CDepends should not be used in async functions

DThe endpoint's if check is redundant because exception stops execution

Step-by-Step Solution

Solution:

Step 1: Analyze dependency behavior
The dependency raises HTTPException if unauthorized, stopping endpoint execution.
Step 2: Check endpoint logic
The if not allowed check is never reached if unauthorized, so it is redundant.
Final Answer:
The endpoint's if check is redundant because exception stops execution -> Option D
Quick Check:
Exception stops flow, no need for extra checks [OK]

Quick Trick: Raise exception to stop flow; no extra checks needed [OK]

Common Mistakes:

MISTAKES

Adding redundant checks after raising exception
Returning false instead of raising exception
Misunderstanding async Depends usage

Master "Authentication and Security" in FastAPI

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Perf

More FastAPI Quizzes

What is wrong with this FastAPI role check code?

Step 1: Analyze dependency behavior

Step 2: Check endpoint logic

Final Answer:

Quick Check:

Want More Practice?