rustango 0.40.0

Django-shaped batteries-included web framework for Rust: ORM + migrations + auto-admin + multi-tenancy + audit log + auth (sessions, JWT, OAuth2/OIDC, HMAC) + APIs (ViewSet, OpenAPI auto-derive, JSON:API) + jobs (in-mem + Postgres) + email + media (S3 / R2 / B2 / MinIO + presigned uploads + collections + tags) + production middleware (CSRF, CSP, rate-limiting, compression, idempotency, etc.).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54

<aside class="sidebar">
    {% if brand_logo_url %}<img class="brand-logo" src="{{ brand_logo_url | safe }}" alt="">{% endif %}
    <h2>{{ brand_name | default(value="Rustango Admin") }}</h2>
    {% if brand_tagline %}<p class="subtitle">{{ brand_tagline }}</p>{% endif %}
    <p>
        <a href="{{ admin_prefix }}/"
           class="{% if active_table is undefined or active_table == '' %}active{% endif %}">Home</a>
    </p>
    <p>
        <a href="{{ admin_prefix }}{{ audit_url }}"
           class="{% if active_table == '__audit' %}active{% endif %}">Activity</a>
    </p>
    {# #253 follow-up — Change-password link moved into the
       Logout form at the bottom of the sidebar to keep all
       account actions in one place. The old standalone <p>
       link above the model list is intentionally removed. #}
    {% if sidebar_groups %}
        {% for group in sidebar_groups %}
            <h3>{{ group.app }}</h3>
            <ul>
                {% for m in group.models %}
                    <li>
                        <a href="{{ admin_prefix }}/{{ m.table }}"
                           {% if m.active %}class="active"{% endif %}>{{ m.name }}</a>
                    </li>
                {% endfor %}
            </ul>
        {% endfor %}
    {% else %}
        <p class="empty">No models registered.</p>
    {% endif %}
    {# #253 — sidebar Logout button. Rendered as a POST form so a
       cross-site GET can't sign the operator out. The chrome
       context only sets `session_user` when the session-auth
       middleware seated an `AdminSession` on the request. #}
    {% if session_user %}
        <form method="post" action="{{ admin_prefix }}/logout" class="logout-form">
            <p class="signed-in-as">
                {% if session_user.username %}
                    Signed in as <strong>{{ session_user.username }}</strong>
                {% else %}
                    Signed in
                {% endif %}
                {% if session_user.is_superuser %}<small>(superuser)</small>{% endif %}
            </p>
            <div class="action-row">
                {% if change_password_url %}
                    <a class="btn btn-link" href="{{ admin_prefix }}{{ change_password_url }}">Change password</a>
                {% endif %}
                <button type="submit" class="btn btn-secondary">Logout</button>
            </div>
        </form>
    {% endif %}
</aside>