BoltAPI Reference¶

This page documents the BoltAPI class and its methods.

BoltAPI¶

The main class for creating Django-Bolt APIs.

from django_bolt import BoltAPI

api = BoltAPI()

Constructor¶

BoltAPI(
    prefix="",                 # URL prefix for all routes
    trailing_slash="strip",    # Trailing slash handling: "strip", "append", or "keep"
    middleware=None,           # List of middleware instances
    django_middleware=None,    # Django middleware configuration
    enable_logging=True,       # Enable request/response logging
    logging_config=None,       # Custom logging configuration
    compression=None,          # CompressionConfig for response compression
    openapi_config=None,       # OpenAPIConfig for documentation
)

Parameters¶

Parameter	Type	Default	Description
`prefix`	`str`	`""`	URL prefix applied to all routes (e.g., `/api/v1`)
`trailing_slash`	`str`	`"strip"`	How to handle trailing slashes in route paths
`middleware`	`list`	`None`	Middleware instances to apply
`django_middleware`	`bool`, `list`, or `dict`	`None`	Django middleware configuration
`enable_logging`	`bool`	`True`	Enable request/response logging
`logging_config`	`LoggingConfig`	`None`	Custom logging configuration
`compression`	`CompressionConfig`	`None`	Response compression settings
`openapi_config`	`OpenAPIConfig`	`None`	Configuration for OpenAPI documentation

Trailing slash modes¶

The trailing_slash parameter controls how route paths are normalized at registration time:

Mode	Description	Example
`"strip"`	Remove trailing slashes (default)	`/users/` → `/users`
`"append"`	Add trailing slashes	`/users` → `/users/`
`"keep"`	No normalization, keep paths as-is	`/users/` → `/users/`

Runtime behavior: When a request doesn't match a route, Django-Bolt checks if the alternate path (with/without trailing slash) exists. If found, returns a 308 Permanent Redirect to the canonical URL.

# Default: strip trailing slashes
api = BoltAPI()

@api.get("/users/")  # Registered as /users
async def list_users():
    return []
# GET /users  → 200 OK
# GET /users/ → 308 Redirect to /users

# Append trailing slashes (Django convention)
api = BoltAPI(trailing_slash="append")

@api.get("/users")  # Registered as /users/
async def list_users():
    return []
# GET /users/  → 200 OK
# GET /users   → 308 Redirect to /users/

# Keep paths as defined
api = BoltAPI(trailing_slash="keep")

@api.get("/users/")  # Registered as /users/
async def list_users():
    return []

Multiple APIs: When auto-discovering multiple api.py files, each API's routes keep their own trailing slash format. Different apps can use different conventions.

Route decorators¶

@api.get(path, **options)¶

Register a GET endpoint.

@api.get("/users")
async def list_users():
    return []

@api.post(path, **options)¶

Register a POST endpoint.

@api.post("/users")
async def create_user():
    return {}

@api.put(path, **options)¶

Register a PUT endpoint.

@api.patch(path, **options)¶

Register a PATCH endpoint.

@api.delete(path, **options)¶

Register a DELETE endpoint.

@api.head(path, **options)¶

Register a HEAD endpoint.

@api.options(path, **options)¶

Register an OPTIONS endpoint.

Route options¶

All route decorators accept these options:

Option	Type	Description
`status_code`	`int`	Default response status code
`response_model`	`type`	Schema for response validation
`summary`	`str`	Short description for OpenAPI
`description`	`str`	Detailed description for OpenAPI
`tags`	`list[str]`	OpenAPI tags for grouping
`auth`	`list`	Authentication backends
`guards`	`list`	Permission guards
`include_in_schema`	`bool`	Include in OpenAPI docs

Class-based view decorators¶

@api.view(path)¶

Register a class-based view (APIView).

@api.view("/resource")
class ResourceView(APIView):
    async def get(self, request):
        return {}

@api.viewset(path)¶

Register a ViewSet with automatic CRUD routing.

@api.viewset("/items")
class ItemViewSet(ViewSet):
    async def list(self, request):
        return []

WebSocket decorator¶

@api.websocket(path)¶

Register a WebSocket endpoint.

@api.websocket("/ws")
async def websocket_handler(websocket: WebSocket):
    await websocket.accept()

API mounting¶

api.mount(prefix, other_api)¶

Mount another BoltAPI under a prefix.

api.mount("/v1", v1_api)

Dependency injection¶

Depends¶

Mark a parameter as a dependency.

from django_bolt import Depends

async def get_db():
    return Database()

@api.get("/data")
async def get_data(db=Depends(get_db)):
    return db.query()

Dependencies can:

Return any value
Be async or sync functions
Have their own dependencies
Access request parameters

get_current_user¶

Built-in dependency for getting the authenticated user.

from django_bolt.auth import get_current_user

@api.get("/me", auth=[JWTAuthentication()], guards=[IsAuthenticated()])
async def me(user=Depends(get_current_user)):
    return {"username": user.username}

Request object¶

The request dict contains:

Key	Type	Description
`method`	`str`	HTTP method
`path`	`str`	Request path
`query`	`dict`	Query parameters
`params`	`dict`	Path parameters
`headers`	`dict`	Request headers
`body`	`bytes`	Raw request body
`context`	`dict`	Authentication context

Type-safe Request¶

from django_bolt import Request

@api.get("/info")
async def info(request: Request):
    user = request.user        # Lazy-loaded Django user
    context = request.context  # Auth context dict

Exceptions¶

HTTPException¶

Base class for HTTP errors.

from django_bolt.exceptions import HTTPException

raise HTTPException(status_code=404, detail="Not found")

Built-in exceptions¶

Exception	Status Code
`BadRequest`	400
`Unauthorized`	401
`Forbidden`	403
`NotFound`	404
`MethodNotAllowed`	405
`Conflict`	409
`UnprocessableEntity`	422
`InternalServerError`	500

from django_bolt.exceptions import NotFound, BadRequest

raise NotFound(detail="User not found")
raise BadRequest(detail="Invalid input")

RequestValidationError¶

For validation errors with field-level details.

from django_bolt.exceptions import RequestValidationError

errors = [
    {"loc": ["body", "email"], "msg": "Invalid email", "type": "value_error"}
]
raise RequestValidationError(errors)

Parameter markers¶

Extract a header value.

from django_bolt.param_functions import Header

async def handler(auth: Annotated[str, Header(alias="Authorization")]):
    pass

Extract a cookie value.

from django_bolt.param_functions import Cookie

async def handler(session: Annotated[str, Cookie(alias="sessionid")]):
    pass

Form¶

Extract form data.

from django_bolt.param_functions import Form

async def handler(username: Annotated[str, Form()]):
    pass

File¶

Extract uploaded files.

from django_bolt.param_functions import File

async def handler(files: Annotated[list[dict], File(alias="file")]):
    pass