API Reference¶

AirForm: Display and Validation of HTML forms. Powered by pydantic.

Pro-tip: Always validate incoming data.

`AirForm` ¶

A form handler that validates and renders Pydantic models as HTML.

Daniel's original pattern: the form knows its model, validates from a dict, and renders itself through a swappable widget.

CSRF protection is automatic. render() embeds a signed token as a hidden input. validate() pops and checks the token before Pydantic sees the data. If validate() is called directly without render() (programmatic use, tests), CSRF is skipped.

Example::

from pydantic import BaseModel
from airform import AirForm

class WatercolorModel(BaseModel):
    pigment: str
    opacity: int

class WatercolorForm(AirForm[WatercolorModel]):
    pass

form = WatercolorForm()
form.validate({"pigment": "burnt sienna", "opacity": 80})
if form.is_valid:
    print(form.data.pigment)

# Render a blank form (includes CSRF token automatically)
html = WatercolorForm().render()

# Swap the widget for custom rendering
class CustomWatercolorForm(AirForm[WatercolorModel]):
    widget = my_custom_renderer

Source code in src/airform/forms.py

class AirForm[M: BaseModel]:
    """A form handler that validates and renders Pydantic models as HTML.

    Daniel's original pattern: the form knows its model, validates
    from a dict, and renders itself through a swappable widget.

    CSRF protection is automatic. render() embeds a signed token
    as a hidden input. validate() pops and checks the token before
    Pydantic sees the data. If validate() is called directly
    without render() (programmatic use, tests), CSRF is skipped.

    Example::

        from pydantic import BaseModel
        from airform import AirForm

        class WatercolorModel(BaseModel):
            pigment: str
            opacity: int

        class WatercolorForm(AirForm[WatercolorModel]):
            pass

        form = WatercolorForm()
        form.validate({"pigment": "burnt sienna", "opacity": 80})
        if form.is_valid:
            print(form.data.pigment)

        # Render a blank form (includes CSRF token automatically)
        html = WatercolorForm().render()

        # Swap the widget for custom rendering
        class CustomWatercolorForm(AirForm[WatercolorModel]):
            widget = my_custom_renderer
    """

    model: type[M] | None = None
    _data: M | None = None
    initial_data: dict | None = None
    errors: list[ErrorDetails] | None = None
    is_valid: bool = False
    excludes: Sequence[str | tuple[str, ...]] | None = None
    _display_excludes: set[str] = set()
    _save_excludes: set[str] = set()

    def __init_subclass__(cls, **kwargs: Any) -> None:
        super().__init_subclass__(**kwargs)
        if "model" not in cls.__dict__:
            for base in getattr(cls, "__orig_bases__", ()):
                if get_origin(base) is AirForm:
                    args = get_args(base)
                    if args and isinstance(args[0], type) and issubclass(args[0], BaseModel):
                        cls.model = args[0]
                        break

        # Build effective exclude sets from metadata defaults + user tuple
        if cls.model is not None:
            cls._display_excludes, cls._save_excludes = _build_excludes(cls.model, cls.excludes)

    def __init__(self, initial_data: dict | None = None) -> None:
        if self.model is None:
            msg = "model"
            raise NotImplementedError(msg)
        self.initial_data = initial_data
        self.submitted_data: dict | None = None
        self._csrf_token: str | None = None

    @property
    def data(self) -> M:
        """The validated model instance.

        Raises:
            AttributeError: If accessed before successful validation.
        """
        if self._data is None:
            msg = "No validated data available. Check is_valid before accessing data."
            raise AttributeError(msg)
        return self._data

    async def __call__(self, form_data: Mapping[str, Any]) -> Self:
        self.validate(form_data)
        return self

    @classmethod
    async def from_request(cls, request: Request) -> Self:
        """Create and validate an AirForm instance from a request.

        CSRF is always enforced for browser submissions.

        Args:
            request: An object with an async ``form()`` method.

        Returns:
            An AirForm instance with validation results.
        """
        form_data = await request.form()
        self = cls()
        # A browser submission came from a rendered form, enforce CSRF
        self._csrf_token = "from_request"
        self.validate(dict(form_data))
        return self

    def validate(self, form_data: Mapping[str, Any]) -> bool:
        """Validate form data against the model.

        If render() or from_request() set a CSRF expectation, the
        token is popped and checked before Pydantic sees the data.
        Fields in _save_excludes are excluded from form.data.

        Args:
            form_data: Mapping containing the form fields to validate.

        Returns:
            True if validation succeeds, False otherwise.
        """
        from airform.csrf import CSRF_FIELD_NAME, _check_csrf_token

        self._data = None
        self.is_valid = False
        self.errors = None
        self.submitted_data = dict(form_data) if hasattr(form_data, "items") else form_data

        # Pop and check CSRF token before Pydantic sees it
        if self._csrf_token is not None:
            raw_token = self.submitted_data.pop(CSRF_FIELD_NAME, None)
            try:
                if raw_token is None:
                    msg = "CSRF token is missing."
                    raise ValueError(msg)
                _check_csrf_token(raw_token)
            except ValueError as e:
                self.errors = [{"type": "value_error", "loc": (CSRF_FIELD_NAME,), "msg": str(e), "input": raw_token}]
                return self.is_valid

        # Validate against the user's model
        try:
            assert self.model is not None
            self._data = self.model(**self.submitted_data)
            self.is_valid = True
        except ValidationError as e:
            self.errors = e.errors()
        return self.is_valid

    def save_data(self) -> dict[str, Any]:
        """Return validated data as a dict, excluding save-excluded fields.

        Use this when persisting to a database::

            await MyModel.create(**form.save_data())
        """
        if self._data is None:
            msg = "No validated data available. Check is_valid before calling save_data()."
            raise AttributeError(msg)
        return self._data.model_dump(exclude=self._save_excludes or None)

    #: Widget for rendering the form as HTML. A callable with signature
    #: ``(*, model, data, errors, excludes) -> str``.
    #: Override on your subclass to swap in a custom renderer::
    #:
    #:     class MyForm(AirForm[MyModel]):
    #:         widget = staticmethod(my_custom_widget)
    widget: Callable = staticmethod(default_form_widget)

    def render(self) -> str:
        """Render the form as HTML using the widget.

        Automatically embeds a signed CSRF token as a hidden field.
        Uses submitted data if available (preserves values after
        validation errors), falls back to initial_data.
        """
        from airform.csrf import csrf_hidden_input

        csrf_html, self._csrf_token = csrf_hidden_input()
        render_data = self.submitted_data or self.initial_data
        fields_html = self.widget(
            model=self.model,
            data=render_data,
            errors=self.errors,
            excludes=self._display_excludes or None,
        )
        return SafeHTML(f"{csrf_html}\n{fields_html}")

`data` `property` ¶

The validated model instance.

Raises:

Type	Description
`AttributeError`	If accessed before successful validation.

`from_request(request)` `async` `classmethod` ¶

Create and validate an AirForm instance from a request.

CSRF is always enforced for browser submissions.

Parameters:

Name	Type	Description	Default
`request`	`Request`	An object with an async `form()` method.	required

Returns:

Type	Description
`Self`	An AirForm instance with validation results.

Source code in src/airform/forms.py

@classmethod
async def from_request(cls, request: Request) -> Self:
    """Create and validate an AirForm instance from a request.

    CSRF is always enforced for browser submissions.

    Args:
        request: An object with an async ``form()`` method.

    Returns:
        An AirForm instance with validation results.
    """
    form_data = await request.form()
    self = cls()
    # A browser submission came from a rendered form, enforce CSRF
    self._csrf_token = "from_request"
    self.validate(dict(form_data))
    return self

`render()` ¶

Render the form as HTML using the widget.

Automatically embeds a signed CSRF token as a hidden field. Uses submitted data if available (preserves values after validation errors), falls back to initial_data.

Source code in src/airform/forms.py

def render(self) -> str:
    """Render the form as HTML using the widget.

    Automatically embeds a signed CSRF token as a hidden field.
    Uses submitted data if available (preserves values after
    validation errors), falls back to initial_data.
    """
    from airform.csrf import csrf_hidden_input

    csrf_html, self._csrf_token = csrf_hidden_input()
    render_data = self.submitted_data or self.initial_data
    fields_html = self.widget(
        model=self.model,
        data=render_data,
        errors=self.errors,
        excludes=self._display_excludes or None,
    )
    return SafeHTML(f"{csrf_html}\n{fields_html}")

`save_data()` ¶

Return validated data as a dict, excluding save-excluded fields.

Use this when persisting to a database::

await MyModel.create(**form.save_data())

Source code in src/airform/forms.py

def save_data(self) -> dict[str, Any]:
    """Return validated data as a dict, excluding save-excluded fields.

    Use this when persisting to a database::

        await MyModel.create(**form.save_data())
    """
    if self._data is None:
        msg = "No validated data available. Check is_valid before calling save_data()."
        raise AttributeError(msg)
    return self._data.model_dump(exclude=self._save_excludes or None)

`validate(form_data)` ¶

Validate form data against the model.

If render() or from_request() set a CSRF expectation, the token is popped and checked before Pydantic sees the data. Fields in _save_excludes are excluded from form.data.

Parameters:

Name	Type	Description	Default
`form_data`	`Mapping[str, Any]`	Mapping containing the form fields to validate.	required

Returns:

Type	Description
`bool`	True if validation succeeds, False otherwise.

Source code in src/airform/forms.py

def validate(self, form_data: Mapping[str, Any]) -> bool:
    """Validate form data against the model.

    If render() or from_request() set a CSRF expectation, the
    token is popped and checked before Pydantic sees the data.
    Fields in _save_excludes are excluded from form.data.

    Args:
        form_data: Mapping containing the form fields to validate.

    Returns:
        True if validation succeeds, False otherwise.
    """
    from airform.csrf import CSRF_FIELD_NAME, _check_csrf_token

    self._data = None
    self.is_valid = False
    self.errors = None
    self.submitted_data = dict(form_data) if hasattr(form_data, "items") else form_data

    # Pop and check CSRF token before Pydantic sees it
    if self._csrf_token is not None:
        raw_token = self.submitted_data.pop(CSRF_FIELD_NAME, None)
        try:
            if raw_token is None:
                msg = "CSRF token is missing."
                raise ValueError(msg)
            _check_csrf_token(raw_token)
        except ValueError as e:
            self.errors = [{"type": "value_error", "loc": (CSRF_FIELD_NAME,), "msg": str(e), "input": raw_token}]
            return self.is_valid

    # Validate against the user's model
    try:
        assert self.model is not None
        self._data = self.model(**self.submitted_data)
        self.is_valid = True
    except ValidationError as e:
        self.errors = e.errors()
    return self.is_valid

`SafeHTML` ¶

Bases: str

A str subclass that HTML-aware systems can trust without escaping.

Follows the html protocol used by Jinja2 and MarkupSafe. Air's tag system checks for html and skips escaping, so form.render() output can be passed directly to Air tags without air.Raw() wrapping.

Source code in src/airform/forms.py

class SafeHTML(str):
    """A str subclass that HTML-aware systems can trust without escaping.

    Follows the __html__ protocol used by Jinja2 and MarkupSafe.
    Air's tag system checks for __html__ and skips escaping, so
    form.render() output can be passed directly to Air tags without
    air.Raw() wrapping.
    """

    def __html__(self) -> str:
        """Return self for the __html__ protocol.

        Jinja2/MarkupSafe calls obj.__html__() and expects an HTML
        string back. Air's tag system checks hasattr(child, '__html__')
        and skips escaping. This satisfies both.
        """
        return str(self)

`html()` ¶

Return self for the html protocol.

Jinja2/MarkupSafe calls obj.html() and expects an HTML string back. Air's tag system checks hasattr(child, 'html') and skips escaping. This satisfies both.

Source code in src/airform/forms.py

def __html__(self) -> str:
    """Return self for the __html__ protocol.

    Jinja2/MarkupSafe calls obj.__html__() and expects an HTML
    string back. Air's tag system checks hasattr(child, '__html__')
    and skips escaping. This satisfies both.
    """
    return str(self)

`default_css()` `cached` ¶

Return the default AirForm CSS as a string.

Source code in src/airform/styles.py

@lru_cache(maxsize=1)
def default_css() -> str:
    """Return the default AirForm CSS as a string."""
    css_path = Path(__file__).parent / "static" / "airform.css"
    return css_path.read_text()

`default_form_widget(*, model, data=None, errors=None, excludes=None)` ¶

Render form fields for a Pydantic model as HTML.

Reads the full AirField metadata vocabulary: Widget, Label, Placeholder, HelpText, Choices, Autofocus, PrimaryKey, Hidden, ReadOnly.

This is the default widget for AirForm.render(). Swap it by setting widget on your AirForm subclass.

Parameters:

Name	Type	Description	Default
`model`	`type[BaseModel]`	The Pydantic model class to render.	required
`data`	`dict \| None`	Dictionary of data to pre-populate fields.	`None`
`errors`	`list \| None`	List of Pydantic validation errors.	`None`
`excludes`	`set[str] \| None`	Field names to skip when rendering.	`None`

Returns:

Type	Description
`str`	HTML string with all form fields.

Source code in src/airform/forms.py

def default_form_widget(
    *,
    model: type[BaseModel],
    data: dict | None = None,
    errors: list | None = None,
    excludes: set[str] | None = None,
) -> str:
    """Render form fields for a Pydantic model as HTML.

    Reads the full AirField metadata vocabulary: Widget, Label,
    Placeholder, HelpText, Choices, Autofocus, PrimaryKey, Hidden,
    ReadOnly.

    This is the default widget for AirForm.render(). Swap it by
    setting ``widget`` on your AirForm subclass.

    Args:
        model: The Pydantic model class to render.
        data: Dictionary of data to pre-populate fields.
        errors: List of Pydantic validation errors.
        excludes: Field names to skip when rendering.

    Returns:
        HTML string with all form fields.
    """
    error_dict = errors_to_dict(errors)
    field_parts: list[str] = []

    for field_name, field_info in model.model_fields.items():
        if excludes is not None and field_name in excludes:
            continue

        meta = _meta_dict(field_info)
        annotation = field_info.annotation

        # Skip fields hidden in form context
        hidden = _get_meta(meta, Hidden)
        if hidden and hidden.in_context("form"):
            continue
        readonly = _get_meta(meta, ReadOnly)
        if readonly and readonly.in_context("form"):
            continue

        input_type = pydantic_type_to_html_type(field_info)
        label_text = label_for_field(field_name, field_info)
        error = error_dict.get(field_name)
        value = data.get(field_name) if data is not None else None
        has_error = error is not None

        # Build wrapper
        wrapper_cls = "air-field" + (" air-field-error" if has_error else "")
        parts: list[str] = [f'<div class="{wrapper_cls}">']

        # Label (after input for checkboxes)
        label_html = f'  <label for="{escape(field_name)}">{escape(label_text)}</label>'
        if input_type != "checkbox":
            parts.append(label_html)

        # Build input attributes
        input_attrs: dict[str, str] = {"name": field_name, "id": field_name}

        if input_type not in ("textarea", "select"):
            input_attrs["type"] = input_type

        # Required: non-optional required fields
        if field_info.is_required() and not _is_optional(annotation):
            input_attrs["required"] = ""

        if Autofocus in meta:
            input_attrs["autofocus"] = ""

        placeholder = _get_meta(meta, Placeholder)
        if placeholder:
            input_attrs["placeholder"] = placeholder.text

        if has_error:
            input_attrs["aria-invalid"] = "true"
            input_attrs["aria-describedby"] = f"{field_name}-error"

        # Pydantic constraints -> HTML5 validation attributes
        for m in field_info.metadata:
            if isinstance(m, annotated_types.MinLen):
                input_attrs["minlength"] = str(m.min_length)
            elif isinstance(m, annotated_types.MaxLen):
                input_attrs["maxlength"] = str(m.max_length)
            elif hasattr(annotated_types, "Len") and isinstance(m, annotated_types.Len):
                if getattr(m, "min_length", None) is not None:
                    input_attrs.setdefault("minlength", str(m.min_length))
                if getattr(m, "max_length", None) is not None:
                    input_attrs.setdefault("maxlength", str(m.max_length))

        # Fallback to field_info attributes
        if hasattr(field_info, "min_length") and field_info.min_length is not None:
            input_attrs.setdefault("minlength", str(field_info.min_length))
        if hasattr(field_info, "max_length") and field_info.max_length is not None:
            input_attrs.setdefault("maxlength", str(field_info.max_length))

        # Render the input element
        if input_type == "textarea":
            val = escape(str(value)) if value is not None else ""
            parts.append(f"  <textarea{_attr_str(input_attrs)}>{val}</textarea>")

        elif input_type == "select":
            options = _get_options(annotation, meta)
            parts.append(f"  <select{_attr_str(input_attrs)}>")
            parts.append('    <option value="" disabled selected hidden>Select...</option>')
            for opt_val, opt_label in options:
                sel = " selected" if value is not None and str(value) == opt_val else ""
                parts.append(f'    <option value="{escape(opt_val)}"{sel}>{escape(opt_label)}</option>')
            parts.append("  </select>")

        else:
            val_attr = f' value="{escape(str(value))}"' if value is not None else ""
            parts.append(f"  <input{_attr_str(input_attrs)}{val_attr}>")

        if input_type == "checkbox":
            parts.append(label_html)

        # Help text
        help_text = _get_meta(meta, HelpText)
        if help_text:
            parts.append(f'  <div class="air-field-help" id="{escape(field_name)}-help">{escape(help_text.text)}</div>')

        # Error message
        if error:
            parts.append(
                f'  <div class="air-field-message" id="{escape(field_name)}-error" role="alert">'
                f"{escape(get_user_error_message(error))}</div>"
            )

        parts.append("</div>")
        field_parts.append("\n".join(parts))

    return "\n".join(field_parts)

`errors_to_dict(errors)` ¶

Converts a pydantic error list to a dictionary for easier reference.

Source code in src/airform/forms.py

def errors_to_dict(errors: list[dict] | None) -> dict[str, dict]:
    """Converts a pydantic error list to a dictionary for easier reference."""
    if errors is None:
        return {}
    return {error["loc"][0]: error for error in errors}

`get_user_error_message(error)` ¶

Convert technical pydantic error to user-friendly message.

Source code in src/airform/forms.py

def get_user_error_message(error: dict) -> str:
    """Convert technical pydantic error to user-friendly message."""
    error_type = error.get("type", "")
    technical_msg = error.get("msg", "")

    messages = {
        "missing": "This field is required.",
        "int_parsing": "Please enter a valid number.",
        "float_parsing": "Please enter a valid number.",
        "bool_parsing": "Please select a valid option.",
        "string_too_short": "This field is required." if error.get("input") == "" else "This value is too short.",
        "string_too_long": "This value is too long.",
        "value_error": "This value is not valid.",
        "type_error": "Please enter the correct type of value.",
        "assertion_error": "This value doesn't meet the requirements.",
        "url_parsing": "Please enter a valid URL.",
        "email": "Please enter a valid email address.",
        "json_invalid": "Please enter valid JSON.",
        "enum": "Please select a valid option.",
        "greater_than": "This value must be greater than the minimum.",
        "greater_than_equal": "This value must be at least the minimum.",
        "less_than": "This value must be less than the maximum.",
        "less_than_equal": "This value must be at most the maximum.",
    }

    return messages.get(error_type, technical_msg or "Please correct this error.")

`label_for_field(field_name, field_info)` ¶

Return the label for a field from AirField metadata.

Source code in src/airform/forms.py

def label_for_field(field_name: str, field_info: Any) -> str:
    """Return the label for a field from AirField metadata."""
    for m in getattr(field_info, "metadata", []):
        if isinstance(m, Label):
            return m.text
    return field_name

`pydantic_type_to_html_type(field_info)` ¶

Return HTML input type from a Pydantic field's type and metadata.

Checks AirField metadata first (Widget, Choices), then infers from the Python type annotation.

Source code in src/airform/forms.py

def pydantic_type_to_html_type(field_info: Any) -> str:
    """Return HTML input type from a Pydantic field's type and metadata.

    Checks AirField metadata first (Widget, Choices), then infers
    from the Python type annotation.
    """
    meta = _meta_dict(field_info)

    widget = _get_meta(meta, Widget)
    if widget:
        return widget.kind
    if Choices in meta:
        return "select"

    annotation = field_info.annotation
    if annotation is bool:
        return "checkbox"
    if annotation is int or annotation is float:
        return "number"
    if isinstance(annotation, type) and issubclass(annotation, Enum):
        return "select"
    if get_origin(annotation) is Literal:
        return "select"

    return "text"

API Reference¶

AirForm ¶

data property ¶

from_request(request) async classmethod ¶

render() ¶

save_data() ¶

validate(form_data) ¶

SafeHTML ¶

__html__() ¶

default_css() cached ¶

default_form_widget(*, model, data=None, errors=None, excludes=None) ¶

errors_to_dict(errors) ¶

get_user_error_message(error) ¶

label_for_field(field_name, field_info) ¶

pydantic_type_to_html_type(field_info) ¶

`AirForm` ¶

`data` `property` ¶

`from_request(request)` `async` `classmethod` ¶

`render()` ¶

`save_data()` ¶

`validate(form_data)` ¶

`SafeHTML` ¶

`html()` ¶

`default_css()` `cached` ¶

`default_form_widget(*, model, data=None, errors=None, excludes=None)` ¶

`errors_to_dict(errors)` ¶

`get_user_error_message(error)` ¶

`label_for_field(field_name, field_info)` ¶

`pydantic_type_to_html_type(field_info)` ¶