API Endpoints refactoring #359
Conversation
…358) this removal is actually helping the django app's setting on appending slash to take effect ``` APPEND_SLASH = True # this is default behavior ``` By default, APPEND_SLASH is set to True so the api will accepts api requests with or without trailing slash, but adding re_path(r'.*') is affecting said behavior to not "append" slash at the end of requests.
| fields = request.GET.get('fields') | ||
| if fields: | ||
| fields = [field for field in fields.split(',') if field in self.valid_fields] | ||
| else: | ||
| fields = self.valid_fields | ||
| if len(fields) == 0: | ||
| return JsonResponse({'error': 'Invalid fields'}, status=400) | ||
|
|
There was a problem hiding this comment.
Just curious... wasn't the validate_json_and_required_fields made for this or is this one a special case that requires us to not use the util function?
There was a problem hiding this comment.
tdlr: validate_json_and_required_fields was not made for this. the two use cases are different.
-
validate_json_and_required_fieldsis to validate the request body. It takes in ajsonobject, check if the request body has the required fields for the action (i.e. creating account will need enough information) and returns an indicator saying if the request body is valid for the action. -
The fields checking in this particular case is getting the
fieldsparam from the request, then parse it into an array and double-check it with valid fields to see if the requested fields are matched with return object available fields. (Kindof mimickinggraphQLbehavior in a sense)- For example, the account settings have these fields:
twoFactorEnabled,theme, andnotificationSetting. Thefieldsin the request body will indicate how much information the backend is returning, in some cases, we only need partial information. So, instead of returning the whole accountSetting object from the database, we only return the requested fields. If in the request body,fields="theme,twoFactorEnabled", only those information is returned in the response.
- For example, the account settings have these fields:
There was a problem hiding this comment.
Okay that makes sense, is there no need to split this into its own function as well or does this seem like it'd be a one-off operation?
Addresses #358
What I Did
/profiles/:account_id?fields=&account-settings/:account_id?fields=)re_pathroutes, which is returning a templateindex.htmlon every request to the endpoint that doesn't have a handler, which is causing append slash behavior to not working (more details below)Removal of
re_path(r'.*', )inmesh/urls.pyAPPEND_SLASH = trueas a default behavior. This allows the Django app to "append" slash on requests that don't have a trailing slash by permanently redirecting the request to the correct one. For example, we have an API endpoint at/example/helloworld/, when requesting to/example/helloworld, the Django app is expected to permanently redirect the request to/example/helloworld/, acting as an "append slash" behavior. But saidre_pathinmesh/urls.pyis causing this redirect not to take place when a request to/example/helloworldis sent to the app, because the re_path takes priority and returns the user a template HTML file as a response instead of redirecting to/example/helloworld/.re_path, the "append" slash behavior is working properly, allowing users to send requests to an endpoint with or without a trailing slash.Testing with and without trailing slash
❌ Incorrect way of sending test request (without trailing slash):
This will causing failures as the
response.status_codeis 301 instead of 200, because the app is permanently redirect.✅ Correct way of sending test requests (without trailing slash):