Architecture
This document explains how FastSvelte is structured and the reasoning behind key architectural decisions.
1. The Monorepo Structure
FastSvelte has four parts:
fastsvelte/
├── backend/ # FastAPI + Python (your API)
├── frontend/ # SvelteKit + TypeScript (admin dashboard)
├── landing/ # SvelteKit (marketing site)
└── db/ # PostgreSQL + Sqitch (database migrations)
Why a monorepo?
FastSvelte uses a monorepo because it's a tightly coupled fullstack application where the backend and frontend are designed to work together. When the backend API changes, the frontend needs to change with it - keeping them in separate repositories would mean managing dependencies, versioning, and synchronization across repos. A monorepo allows atomic commits that update the database schema, backend logic, and frontend UI simultaneously, ensuring the entire system stays in sync. This simplifies development with a single clone and unified tooling.
Design Philosophy: Minimal Dependencies, Maximum Flexibility
FastSvelte intentionally avoids many popular libraries and frameworks that other starter kits include. Instead of bundling heavy abstractions, it sticks to proven, essential tools with minimal dependencies.
Why stay lean? Adding a library later is straightforward - removing one that's baked into the starter kit is painful. As a starter kit, FastSvelte's job is to provide a solid foundation, not to make architectural decisions for you. This approach makes the codebase highly customizable. Build exactly what you need, add libraries as your requirements become clear, and maintain full control over your architecture.
2. End-to-End Request Flow
Let's trace what happens when a user creates a project in your SaaS app. (This example follows the Adding a New Entity tutorial where you build a project management feature.)
High-Level Flow
sequenceDiagram
participant User
participant Frontend as Frontend<br/>(SvelteKit)
participant Backend as Backend<br/>(FastAPI)
User->>Frontend: Fill form & click "Create Project"
Frontend->>Backend: POST /api/projects
Backend->>Backend: Validate, auth, save to DB
Backend-->>Frontend: ProjectResponse (JSON)
Frontend->>Frontend: Update UI
Frontend-->>User: Show successThe flow:
- User fills out a form and clicks "Create Project"
- Frontend sends API request with project data
- Backend validates, authenticates, and saves to database
- Response flows back: backend → frontend → user sees success
That's the high-level flow. Now let's see how each piece is built.
3. Backend: Layered Architecture
The backend is where all the heavy lifting happens. External services like Stripe, SendGrid, and Google OAuth integrate here. The frontend stays thin - it's purely a presentation layer that talks to the backend API.
The backend separates concerns into layers. Here's how a request flows through them:
Backend Request Flow
sequenceDiagram
participant Route as Route Layer<br/>(HTTP)
participant Service as Service Layer<br/>(Business Logic)
participant Repo as Repository<br/>(Data Access)
participant DB as PostgreSQL
Route->>Route: Validate request & auth
Route->>Service: create_project(org_id, user_id, data)
Service->>Service: Check quotas & validate
Service->>Repo: create_project(org_id, user_id, data)
Repo->>DB: INSERT INTO project...
DB-->>Repo: Return project ID
Repo->>DB: SELECT * FROM project WHERE id = ?
DB-->>Repo: Return project data
Repo-->>Service: Project entity
Service-->>Route: Project entity
Route-->>Route: Convert to JSON responseEach layer has a specific job:
- Route - Handles HTTP (validation, auth, response formatting)
- Service - Business logic (quotas, permissions, workflows)
- Repository - Database access (SQL queries)
- Database - Data storage
Directory Structure
app/
├── main.py # Starts everything
├── config/ # Settings & dependency injection
├── api/route/ # HTTP endpoints
├── service/ # Business logic
├── data/repo/ # Database queries
├── model/ # Request/response shapes
└── util/ # Auth, email, etc.
Keep Layers Separated
Don't leak concerns between layers. Services shouldn't know about HTTP status codes or request objects. Repositories shouldn't contain business logic.
**Bad example** - Service returning HTTP exception:
```python
# ❌ Service layer shouldn't know about HTTP
async def create_user(self, email: str):
if self.user_repo.exists(email):
raise HTTPException(status_code=409, detail="User exists")
```
**Good example** - Service throws domain exception, route handles HTTP:
```python
# ✅ Service throws domain exception
async def create_user(self, email: str):
if self.user_repo.exists(email):
raise UserAlreadyExistsException(email)
# ✅ Route converts to HTTP
@router.post("/users")
async def create_user_route(data: UserCreate):
try:
return await user_service.create_user(data.email)
except UserAlreadyExistsException as e:
raise HTTPException(status_code=409, detail=str(e))
```
Why raw SQL instead of an ORM?
ORMs add complexity. You learn the ORM's query language, debug what SQL it generates, then eventually write raw SQL anyway for performance. With raw SQL in repositories, you see exactly what runs and optimize directly.
Raw SQL is also easier for LLMs to generate and reason about, making AI-assisted development smoother.
Beyond technical considerations, this choice aligns with FastSvelte's design philosophy of staying lean. Adding an ORM later is straightforward when your project needs it - removing one that's baked into the starter kit is painful. You maintain full control over data access patterns and can choose SQLAlchemy, Prisma, or any other tool based on your actual requirements.
Why dependency injection?
Dependency injection eliminates repetitive boilerplate and centralizes configuration. Instead of manually constructing dependencies in every route, they're wired up once and injected automatically.
In FastSvelte, all objects are wired up in one place (app/config/container.py):
# Define everything once
self.project_repo = providers.Factory(ProjectRepo, db_config=self.db_config)
self.project_service = providers.Singleton(ProjectService, project_repo=self.project_repo)
Then use them anywhere:
async def create_project(
project_service: ProjectService = Depends() # Injected automatically
):
...
This centralization provides several benefits. Object lifecycles (singleton vs factory) are explicit and visible in one file - no hunting through the codebase to determine if a service creates new instances or reuses one. Configuration changes propagate automatically without touching route code. Testing becomes straightforward by swapping implementations in the container rather than modifying dozens of files.
4. Database: Multi-Tenant PostgreSQL
FastSvelte uses a multi-tenant architecture where all data is scoped to organizations. Every user belongs to at least one organization, and all business data (projects, notes, etc.) is associated with an organization, not individual users. This design supports both individual users and teams without changing the underlying data model.
Core entities:
user- Individual accounts with email/password authenticationorganization- The tenant boundary - all business data belongs to an organizationrole- Permission level:member(basic access),org_admin(manage organization),sys_admin(platform-wide access)session- Server-side sessions for authenticationplan- Subscription tiers (free, pro, enterprise, etc.)organization_plan- Links organizations to their current subscription plan
B2C mode (individual users):
Public registration is enabled. When a user signs up, they automatically get their own organization. Each user operates independently with their personal workspace. User invitations and organization management features are disabled in this mode.
B2B mode (team collaboration):
Public registration is disabled. System administrators create organizations and assign an organization admin. The organization admin can then invite teammates via email. All members share access to the same data within that organization. Users can belong to multiple organizations (for example, a contractor working with several clients).
Future Enhancement
Self-service organization creation (allowing users to create teams from the signup page) is being considered for a future release.
The mode is controlled by FS_MODE environment variable (b2b or b2c), which affects signup flow and default UI behavior. The database schema remains identical - only the application logic changes. For complete details on B2B mode, see B2B Mode.
Database migrations with Sqitch
FastSvelte uses Sqitch for database schema versioning. Because migrations are plain SQL files in version control, they're reviewed alongside code changes in pull requests.
Why Sqitch? Most migration tools are tied to a specific ORM or language. Sqitch is language-agnostic and works with raw SQL, making it perfect for FastSvelte's minimal dependencies philosophy. Migrations are explicit SQL files that you can review, optimize, and understand without learning an abstraction layer.
Create a new migration:
This creates three SQL files in the db/ directory:
deploy/add_feature.sql- How to apply the changerevert/add_feature.sql- How to undo itverify/add_feature.sql- How to verify it worked
Deploy migrations:
Why the sqitch.sh wrapper?
The sqitch.sh script wraps the native Sqitch command to add FastSvelte-specific features:
- **Multi-environment support**: Automatically selects the correct database URL based on the stage (dev, beta, gamma, prod, test)
- **Safety checks**: Validates that all migration files include `BEGIN;` and `COMMIT;` to ensure transactional integrity
- **Revert protection**: Requires `--to` flag for revert operations to prevent accidental complete rollbacks
- **Environment loading**: Loads database URLs from `.env` files for each environment
5. Frontend: Type-Safe SvelteKit
The frontend is a SvelteKit SPA (Single Page Application) that stays thin by delegating all business logic to the backend. It uses Svelte 5 runes for reactivity and maintains type safety through auto-generated API clients.
Directory structure:
src/
├── routes/
│ ├── (auth)/ # Login, signup (public pages)
│ ├── (protected)/ # Dashboard, settings (requires authentication)
│ └── +layout.svelte # Global layout wrapper
├── lib/
│ ├── api/gen/ # Auto-generated TypeScript API client (Orval)
│ ├── auth/ # Session management with Svelte stores
│ ├── components/ # Reusable UI components
│ ├── context/ # Application-wide context providers
│ ├── config/ # Configuration and constants
│ └── util/ # Helper functions and utilities
Key features:
- Route-based authentication: Routes in
(protected)/automatically check for valid sessions - Auto-generated API client: TypeScript types generated from OpenAPI spec ensure compile-time safety
- Svelte 5 runes: Modern reactivity with
$state,$derived, and$effectfor local component state - TailwindCSS + DaisyUI: Utility-first styling with pre-built component themes
Auto-generated API client
When you change backend models or routes:
Now you get compile-time type safety:
import { createNote } from "$lib/api/gen/notes";
import type { CreateNoteRequest, NoteResponse } from "$lib/api/gen/model";
// TypeScript knows the request and response types
const note: NoteResponse = await createNote({
title: "My Note",
content: "Note content",
});
Here's how it works:
- Define Pydantic models and routes in the backend:
class CreateNoteRequest(BaseModel):
title: str
content: str | None
class NoteResponse(BaseModel):
id: int
title: str
content: str | None
@router.post("", response_model=NoteResponse, operation_id="createNote")
async def create_note(data: CreateNoteRequest, ...):
# The response_model and operation_id are crucial:
# - response_model defines the return type in OpenAPI spec
# - operation_id becomes the TypeScript function name
...
- FastAPI auto-generates an OpenAPI spec from the Pydantic models and route decorators
- Orval reads the spec and generates TypeScript types and functions
- Import and use the generated functions with full type safety
Change the backend model or route → Run npm run generate → TypeScript compiler catches any breaking changes in the frontend.
6. Authentication & Security
Session-based authentication
We use session cookies (not JWT tokens):
- User logs in → Backend creates session in database
- Backend sends HTTP-only cookie with session ID
- Every API call includes this cookie automatically
- Backend checks: "Is this session valid?" before responding
Why session cookies instead of JWT?
- HTTP-only cookies can't be stolen by JavaScript (XSS protection)
- Server controls sessions = instant logout
- Simpler frontend code = no token refresh logic
- Built-in CSRF protection with SameSite cookies
Sessions expire after 24 hours (configurable). The backend stores hashed session tokens and compares them on each request.
Role-based access control
Three roles:
- member - Basic user (can use the app)
- org_admin - Manage organization (invite users, change settings)
- sys_admin - Full system access (manage all orgs, see analytics)
Protect routes with role checks:
@router.get("/admin/users")
async def list_users(
current_user: CurrentUser = Depends(min_role_required(Role.SYSTEM_ADMIN))
):
# Only sys_admins can reach this
Routes in (protected)/ automatically check authentication on the frontend:
<!-- (protected)/+layout.svelte -->
<script>
import { onMount } from "svelte";
import { ensureAuthenticated } from "$lib/auth/session";
onMount(async () => {
await ensureAuthenticated(); // Redirects to login if not authenticated
});
</script>
7. Frequently Asked Questions
Why file name suffixes like user_service.py?
Files are named service/user_service.py instead of service/user.py. The suffix appears redundant since the folder already indicates the layer, but it solves a practical problem.
Without suffixes:
With suffixes:
When multiple files are open, IDE tabs show filenames, not full paths. Without suffixes, every tab displays user.py - making navigation difficult. The suffix also improves search: typing "user_service" immediately finds the right file instead of filtering through four different user.py files across different folders.
Why Factory vs Singleton in dependency injection?
Singleton = one instance for the whole app:
# Same UserService instance every time
user_service = providers.Singleton(UserService, user_repo=user_repo)
Factory = new instance each time:
Use Factory when the component might hold state (like database connections).
Use Singleton when it's stateless (like services).
How does error handling work?
FastSvelte uses domain exceptions that inherit from BaseAppException. Each exception knows its own HTTP status code, error code, and message format. A global error handler middleware automatically converts these to JSON responses.
Services throw domain exceptions:
from app.exception.common_exception import ResourceNotFound
async def get_user(self, user_id: int):
user = await self.user_repo.get_by_id(user_id)
if not user:
raise ResourceNotFound(resource="user", resource_id=user_id)
return user
Routes don't need try/catch - exceptions bubble up to middleware:
@router.get("/{user_id}")
async def get_user_route(user_id: int, user_service: UserService = Depends()):
# No try/catch needed - middleware handles it
return await user_service.get_user(user_id)
Middleware automatically converts to HTTP response:
The global error handler in app/api/middleware/error_handler.py catches all BaseAppException instances and returns structured JSON responses with the appropriate status code, error code, message, and details.
See Section 3 for why services shouldn't know about HTTP - they might be called from routes, background jobs, CLI scripts, or tests.
Next Steps:
- Development Guide - Start building
- B2B Mode - Configure team collaboration features
- Integrations - Add Stripe, SendGrid, and OAuth
- Troubleshooting - Fix issues