feat(dashboard): API to get a dashboard's charts

[suddjian]

SUMMARY

Adds a new API to get the chart definitions for a specific dashboard. This is going to support future efforts to turn Superset's frontend into a single page app by allowing removal of the Dashboard app's bootstrap data.

Alternative considered: Using GET dashboard/:id/related/slices, and iterating over the results to fetch all the slices from /charts/:id.

I rejected this approach because it would require changing the /related/slices endpoint (currently the endpoint returns the names of charts rather than ids, which is pretty useless for this purpose), and also because it would result in a large number of API requests. The chosen method of a single convenient API endpoint is much simpler.

Thanks to @pkdotson for pairing ❤️

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

N/A

TEST PLAN

Wrote tests

ADDITIONAL INFORMATION

• Has associated issue:
• Changes UI
• Requires DB Migration.
• Confirm DB Migration upgrade and downgrade tested.
• Introduces new feature or API
• Removes existing feature or API

[suddjian]

Requesting review from @dpgaspar to make sure I got the security related code and doc strings correct :)

edit: CI says there's something wrong with my doc string but I'm not sure how to fix it! 😖

[nytai]

@suddjian You can probably get some logs if you visit /swagger/v1 which the result of compiling these docstrings.

[codecov-io]

Codecov Report

Merging #12978 (2d3b001) into master (2ce7982) will increase coverage by 13.67%.
The diff coverage is 36.99%.

@@             Coverage Diff             @@
##           master   #12978       +/-   ##
===========================================
+ Coverage   53.06%   66.74%   +13.67%     
===========================================
  Files         489      491        +2     
  Lines       17314    28972    +11658     
  Branches     4482        0     -4482     
===========================================
+ Hits         9187    19336    +10149     
- Misses       8127     9636     +1509     

Flag	Coverage Δ
cypress	?
python	66.74% <36.99%> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
superset/constants.py	100.00% <ø> (ø)
superset/examples/birth_names.py	73.19% <ø> (ø)
...43f2fdb_add_granularity_to_charts_where_missing.py	0.00% <0.00%> (ø)
...s/260bf0649a77_migrate_x_dateunit_in_time_range.py	0.00% <0.00%> (ø)
...ons/versions/41ce8799acc3_rename_pie_label_type.py	0.00% <0.00%> (ø)
superset/connectors/sqla/views.py	62.43% <4.34%> (ø)
superset/views/datasource.py	88.70% <16.66%> (ø)
superset/utils/core.py	87.63% <66.66%> (ø)
superset/charts/commands/exceptions.py	92.85% <77.77%> (ø)
superset/db_engine_specs/elasticsearch.py	89.74% <93.75%> (ø)
... and 958 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 86807e4...2d3b001. Read the comment docs.

[amitmiran137]

I think tests readability can be improved.
maybe structure them in an AAA (arrange act assert ) like :
https://github.com/apache/superset/blob/master/tests/dashboards/security/security_rbac_tests.py#L47:L64

and a bit cleanup by extracting to common reusable method can make tests fairly easy to understand

[dpgaspar]

Nicely done, the N+1 is tricky but we can avoid it. Using Slice.data is handy but we probably can start using marshmallow to the same effect, with the plus of using the schema on the OpenAPI spec,

[junlincc]

Congrats on the first step and thanks for the collaboration! @suddjian @pkdotson
seems to me that Multiline chart is not passing through the new API.

[suddjian]

Thanks for the QA @junlincc, but I don't think that error could possibly have anything to do with this PR. No existing functionality has been changed here.

[junlincc]

got it, that's strange. i also checked on master and other branches which don't have this issue. please disregard if it's not related.

[dpgaspar]

Looks really good!

[dpgaspar]

Non blocking. Having one or a bunch of dashboards with more then 1 chart could make a better GET test

[amitmiran137]

Should additionally use has_dashboard access decorator to enforce access for the dashboard

[dpgaspar]

right! good point @amitmiran137, we can use dashboard = self.datamodel.get(pk, self._base_filters)