# Create a Project

django-admin startproject core

# Create an App

python manage.py startapp home

# Add this app to settings.py file

In [2]:
INSTALLED_APPS = [
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'home',
    'rest_framework'
]

# Creating Get API

In [None]:
#create get API with @api_view in core/home/views.py
from rest_framework.decorators import api_view
from rest_framework.response import Response

@api_view(['GET'])
def index(request):
    # OR we can check request.method == "GET" then only give this response
    data = {
        'course':'python',
        'content' : ['flask', 'django' , 'fastapi'],
        'author' : 'rahul'
    }
    return Response(data)

#create url route for the above api in core/api/urls.py
from django.urls import path

urlpatterns = [
    path('index/', views.index),
]

#include this api app urls to project urls in core/core/urls.py
from django.contrib import admin
from django.urls import path, include

urlpatterns = [
    path('admin/', admin.site.urls),
    path('api/', include('api.urls'))

]

#python manage.py migrate

#python manage.py runserver

#open : http://127.0.0.1:8000/api/index/
#output : 
"""
{
    "course": "python",
    "content": [
        "flask",
        "django",
        "fastapi"
    ],
    "author": "rahul"
}
"""

# Query parameter in DRF

In [None]:
#Everything is same GET API the only change is the below code
@api_view(['GET', "POST"])
def index(request):
    if request.method == "GET":
        data = {'course':'python'}
        print(request.GET.get("search"))#rahul
        return Response(data)
    
#http://127.0.0.1:8000/api/index?search=rahul

# Path parameter in DRF

In [None]:
#Everything is same GET API the only change is the below code

#urls.py
urlpatterns = [
    path('index/user/<usr>', views.index),
]

#views.py
@api_view(['GET', "POST"])
def index(request, usr):
    if request.method == "GET":
        data = {'course':'python'}
        print(usr) #25
        return Response(data)
    
# http://127.0.0.1:8000/api/index/user/25
# Note : path('index/user/<int:usr>', views.index)

# Creating Post API

In [None]:
#Everything is same GET API the only change is the below code

@api_view(["POST"])
def index(request):
    if request.method == "POST":
        print(request.data)
        msg = "data posted..."
        return Response(msg)
    
# http://127.0.0.1:8000/api/index/
"""
request body : {
    "name" : "rahul",
    "age" : 25
}

response : "data posted..."
"""

# Creating Serializers

In [None]:
# models.py
from django.db import models
class Person(models.Model):
    name = models.CharField(max_length=20)
    age = models.IntegerField()
    
# serializers.py
from rest_framework import serializers
from .models import Person
class PersonSerializer(serializers.ModelSerializer):
    class Meta:
        model = Person
        fields = ['id','name', 'age'] #required name & age
        # fields = "__all__"
        # exclude = ['name']
    
#views.py
from rest_framework.decorators import api_view
from rest_framework.response import Response
from .models import Person
from .serializers import PersonSerializer
@api_view(['GET', 'POST'])
def people(request):
    if request.method == "GET":
        out = Person.objects.all()
        serializer = PersonSerializer(out, many = True)
        return Response(serializer.data)
    else:
        data = request.data
        serializer = PersonSerializer(data = data)
        if serializer.is_valid():
            serializer.save()
            return Response(serializer.data)
        return Response(serializer.errors)

#urls.py
from home import views
from django.urls import path
urlpatterns = [
    path('person/', views.people),
]


"""
GET : http://127.0.0.1:8000/api/person/
response : [
    {
        "id": 1,
        "name": "rahul",
        "age": 25
    }
]

POST : GET : http://127.0.0.1:8000/api/person/
request : {
    "name" : "rahul",
    "age" : 25
}

response : [
    {
        "id": 1,
        "name": "rahul",
        "age": 25
    }
]
"""

# Validation in Serializer

In [None]:
class PersonSerializer(serializers.ModelSerializer):

    class Meta:
        model = Person
        fields = ['id','name', 'age'] #required name & age

    def validate(self, data):
        if data['age'] < 18:
            raise serializers.ValidationError("age should be greater than 18")

        return data
# Note : For validation we use prefix as validate. e.g validate_age, validate_name or just validate 
# when it is one only.

# Method Serializer

In [None]:
class PersonSerializer(serializers.ModelSerializer):
    color = ColorSerializer()
    country = serializers.SerializerMethodField()
    class Meta:
        model = Person
        fields = "__all__"

    def get_country(self, obj):
        return "India"
# Note : For methods we use get as prefix so that django can recognize. e.g. get_xyz

# Custom Serializer

In [None]:
class LoginSerializer(serializers.Serializer):
    email = serializers.EmailField()
    password = serializers.CharField()

# Using Relationship in Serializer

In [None]:
#models.py
class Color(models.Model):
    color_name = models.CharField(max_length=100)
    def __str__(self):
        return self.color_name

class Person(models.Model):
    color = models.ForeignKey(Color, null=True,blank=True, on_delete=models.CASCADE, related_name="color")
    name = models.CharField(max_length=20)
    age = models.IntegerField()

#serializer.py
class ColorSerializer(serializers.ModelSerializer):

    class Meta:
        model = Color
        fields = ['color_name']

class PersonSerializer(serializers.ModelSerializer):
    color = ColorSerializer()
    class Meta:
        model = Person
        fields = "__all__"

# Get all records from DB

In [None]:
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
def people(request):
    if request.method == "GET":
        out = Person.objects.all()
        serializer = PersonSerializer(out, many = True)
        return Response(serializer.data)

# Add a record in DB

In [None]:
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
def people(request):
    if request.method == "POST":
        data = request.data
        serializer = PersonSerializer(data = data)
        if serializer.is_valid():
            serializer.save()
            return Response(serializer.data)
        return Response(serializer.errors)

# Update a record in DB

In [None]:
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
    if request.method == "PUT":
        data = request.data
        obj = Person.objects.get(id=data['id'])
        serializer = PersonSerializer(obj, data = data)
        if serializer.is_valid():
            serializer.save()
            return Response(serializer.data)
        return Response(serializer.errors)

# Update(Partial) a record in DB

In [None]:
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
def people(request):
    if request.method == "PATCH":
        data = request.data
        obj = Person.objects.get(id=data['id'])
        serializer = PersonSerializer(obj, data = data, partial=True)
        if serializer.is_valid():
            serializer.save()
            return Response(serializer.data)
        return Response(serializer.errors)

# Delete a record from DB

In [None]:
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
def people(request):
    if request.method == "DELETE":
        data = request.data
        try:
            obj = Person.objects.get(id=data['id'])
            obj.delete()
            return Response({"msg":"data deleted..."})
        except:
            return Response({"msg":"data not found..."}, status=404)

# Class Based API

In [None]:
# views.py
class Person(APIView):
    def get(self, request):
        return Response({"msg": "This is get API"})
    
# urls.py
urlpatterns = [
    path('persons/', views.Person.as_view()),
]
# -> rest everything is same as @api_view()

# CRUD with ModelsViewSet

In [None]:
# views.py
class PeopleViewSets(viewsets.ModelViewSet):
#     http_method_names = ['get', 'post']
    serializer_class = PersonSerializer
    queryset = Person.objects.all()
    
#urls.py
from rest_framework.routers import DefaultRouter

router = DefaultRouter()
router.register(r'people', views.PeopleViewSets, basename='people')
urlpatterns = router.urls

urlpatterns = [
    path('', include(router.urls)),
    path('index/user/<int:usr>', views.index),
    path('person/', views.people)
]

# Note : http_method_names = ['get', 'post'] this will restrict the CRUD operation of ModelViewSet
# to get & post only.

# Token Authentication

In [None]:
# settings.py
INSTALLED_APPS = ['rest_framework.authtoken']

REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': [
        'rest_framework.authentication.BasicAuthentication',
        'rest_framework.authentication.SessionAuthentication',
    ]
}

#python manage.py migrate

#serializer.py
class LoginSerializer(serializers.Serializer):
    username = serializers.CharField()
    password = serializers.CharField()

class RegisterSerializer(serializers.Serializer):
    username = serializers.CharField()
    email = serializers.EmailField()
    password = serializers.CharField()
    def validate(self, data):
        if data['username']:
            if User.objects.filter(username=data['username']).exists():
                raise serializers.ValidationError("username is taken")
        return data
    def create(self, validated_data):
        user = User.objects.create(username=validated_data['username'], email=validated_data['email'] )
        user.set_password(validated_data['password'])
        user.save()
        return validated_data
    
# views.py
from django.contrib.auth import authenticate
from rest_framework.authtoken.models import Token
class RegisterAPI(APIView):
    def post(self, request):
        data = request.data
        serializer = RegisterSerializer(data = data)
        if not serializer.is_valid():
            return Response({
                'status': False,
                'message':serializer.errors
            }, status=400)
        serializer.save()
        return Response({'status':True, 'msg':'user created !'}, status=201)

class LoginAPI(APIView):
    def post(self, request):
        data = request.data
        serializer = LoginSerializer(data=data)
        if not serializer.is_valid():
            return Response({
                'status': False,
                'message':serializer.errors
            }, status=400)
        user = authenticate(username=serializer.data['username'], password=serializer.data['password'])
        if not user:
            return Response({
                'status': False,
                'message':'Invalid Creds'
            }, status=400)
        token = Token.objects.create(user=user)
        return Response({'status':True, 'token':str(token),'msg':'user logged in !'}, status=200)
    
# urls.py
urlpatterns = [
    path('register/', views.RegisterAPI.as_view()),
    path('login/', views.LoginAPI.as_view())
]

# Authorization

In [None]:
#settings.py
REST_FRAMEWORK = {
    'DEFAULT_PERMISSION_CLASSES': [
        'rest_framework.permissions.AllowAny',
    ]
}

# views.py
from rest_framework.permissions import IsAuthenticated
from rest_framework.authentication import TokenAuthentication

@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
@permission_classes([IsAuthenticated])
@authentication_classes([TokenAuthentication])
def people(request):
    if request.method == "GET":
        out = Person.objects.all()
        serializer = PersonSerializer(out, many = True)
        return Response(serializer.data)
    
#in headers, send authorization as key & for value send in this format - Token efd5adb6b0aba913b6e823a0849e716ad11522d0

# Pagination

In [None]:
# settings.py
REST_FRAMEWORK = {
    'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.LimitOffsetPagination',
    'PAGE_SIZE': 100
}

# views.py
from django.core.paginator import Paginator
@api_view(['GET', 'POST', "PUT", "PATCH", 'DELETE'])
def people(request):
    if request.method == "GET":
        out = Person.objects.all()
        page = request.GET.get('page', 1)
        page_size = 3
        try:
            paginator = Paginator(out, page_size)
            serializer = PersonSerializer(paginator.page(page), many = True)
            return Response(serializer.data)
        except:
            return Response({"msg":"invalid page number"})